Action not permitted
Modal body text goes here.
cve-2013-5854
Vulnerability from cvelistv5
Published
2013-10-16 18:00
Modified
2024-08-06 17:22
Severity ?
EPSS score ?
Summary
Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T17:22:31.165Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "RHSA-2013:1440", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-1440.html" }, { "name": "98570", "tags": [ "vdb-entry", "x_refsource_OSVDB", "x_transferred" ], "url": "http://osvdb.org/98570" }, { "name": "HPSBUX02944", "tags": [ "vendor-advisory", "x_refsource_HP", "x_transferred" ], "url": "http://marc.info/?l=bugtraq\u0026m=138674073720143\u0026w=2" }, { "name": "oval:org.mitre.oval:def:19187", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19187" }, { "name": "oracle-cpuoct2013-cve20135854(88009)", "tags": [ "vdb-entry", "x_refsource_XF", "x_transferred" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/88009" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "name": "63079", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/63079" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2013-10-15T00:00:00", "descriptions": [ { "lang": "en", "value": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-09-18T12:57:01", "orgId": "43595867-4340-4103-b7a2-9a5208d29a85", "shortName": "oracle" }, "references": [ { "name": "RHSA-2013:1440", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://rhn.redhat.com/errata/RHSA-2013-1440.html" }, { "name": "98570", "tags": [ "vdb-entry", "x_refsource_OSVDB" ], "url": "http://osvdb.org/98570" }, { "name": "HPSBUX02944", "tags": [ "vendor-advisory", "x_refsource_HP" ], "url": "http://marc.info/?l=bugtraq\u0026m=138674073720143\u0026w=2" }, { "name": "oval:org.mitre.oval:def:19187", "tags": [ "vdb-entry", "signature", "x_refsource_OVAL" ], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19187" }, { "name": "oracle-cpuoct2013-cve20135854(88009)", "tags": [ "vdb-entry", "x_refsource_XF" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/88009" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "name": "63079", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/63079" } ], "x_legacyV4Record": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-5854", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "RHSA-2013:1440", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-1440.html" }, { "name": "98570", "refsource": "OSVDB", "url": "http://osvdb.org/98570" }, { "name": "HPSBUX02944", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=138674073720143\u0026w=2" }, { "name": "oval:org.mitre.oval:def:19187", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19187" }, { "name": "oracle-cpuoct2013-cve20135854(88009)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/88009" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "name": "63079", "refsource": "BID", "url": "http://www.securityfocus.com/bid/63079" } ] } } } }, "cveMetadata": { "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85", "assignerShortName": "oracle", "cveId": "CVE-2013-5854", "datePublished": "2013-10-16T18:00:00", "dateReserved": "2013-09-18T00:00:00", "dateUpdated": "2024-08-06T17:22:31.165Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2013-5854\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2013-10-16T18:55:03.717\",\"lastModified\":\"2022-05-13T14:57:20.170\",\"vulnStatus\":\"Modified\",\"evaluatorComment\":\"Per http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html\\n\\n\u0027Applies to client deployment of Java only. This vulnerability can be exploited only through sandboxed Java Web Start applications and sandboxed Java applets.\u0027\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad no especificada en Oracle Java SE v7u40 y anteriores, y JavaFX v2.2.40 y anteriores permite a atacantes remotos afectar a la confidencialidad a trav\u00e9s de vectores desconocidos.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:H/Au:N/C:P/I:N/A:N\",\"accessVector\":\"NETWORK\",\"accessComplexity\":\"HIGH\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\",\"baseScore\":2.6},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":4.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.2.40\",\"matchCriteriaId\":\"211D20FA-1F11-4B12-9B18-7A9F17CC1984\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64BDB79F-96E0-43A4-81CD-BADF0B039006\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC0E861D-AEBC-46EF-8CA6-CF7DE2518DB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB4477BB-9B0A-4874-9A5B-1B6193DC94E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBA3A1CE-1531-426A-A600-4DD6FB63D01A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E2179A9-513A-46AA-BC4D-ED988B38650F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F37311B5-5404-435B-BBB6-76DA3EA19730\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55CB5B80-C778-456D-8871-CA79DED61078\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.2.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00472766-CED3-42FD-AD93-811EDBC45790\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.2.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2598CD0-B320-4A99-B291-0D901ADCF871\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:javafx:2.2.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FAFDCE11-A697-4E2F-A803-41D02CE15917\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:*:update40:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.7.0\",\"matchCriteriaId\":\"5DE61035-9270-4CFE-A331-98D9203929F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E44FC8AF-F76F-4A8E-8D03-4F8BCA8CB031\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"6152036D-6421-4AE4-9223-766FE07B5A44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE8B0935-6637-413D-B896-28E0ED7F2CEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"30B480BC-0886-4B19-B0A5-57B531077F40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update13:*:*:*:*:*:*\",\"matchCriteriaId\":\"7FA1990D-BBC2-429C-872C-6150459516B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update15:*:*:*:*:*:*\",\"matchCriteriaId\":\"8DC2887E-610B-42FE-9A96-1E2F01BF17A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update17:*:*:*:*:*:*\",\"matchCriteriaId\":\"130849CD-A581-4FE6-B2AA-99134F16FE65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"D375CECB-405C-4E18-A7E8-9C5A2F97BD69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update21:*:*:*:*:*:*\",\"matchCriteriaId\":\"50AF5AE9-5314-4CE7-95A7-CE6D1B036D23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B10B19C-FA60-4CD5-AA61-A9791F6CECA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"52EEEA5A-E77C-43CF-A063-9D5C64EA1870\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"003746F6-DEF0-4D0F-AD97-9E335868E301\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF830E0E-0169-4B6A-81FF-2E9FCD7D913B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"6BAE3670-0938-480A-8472-DFF0B3A0D0BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EC967FF-26A6-4498-BC09-EC23B2B75CBA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"02781457-4E40-46A9-A5F7-945232A8C2B1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:*:update40:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.7.0\",\"matchCriteriaId\":\"480E1DC3-A93D-4566-A87B-0147202273CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C27372B-A091-46D5-AE39-A44BBB1D9EE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4B153FD-E20B-4909-8B10-884E48F5B590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*\",\"matchCriteriaId\":\"F21933FB-A27C-4AF3-9811-2DE28484A5A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2B20041-EB5D-4FA4-AC7D-C35E7878BCFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update13:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3C3C9C7-73AE-4B1D-AA85-C7F5330A4DE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update15:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D8BB8D7-D5EC-42D6-BEAA-CB03D1D6513E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update17:*:*:*:*:*:*\",\"matchCriteriaId\":\"37B5B98B-0E41-4397-8AB0-C18C6F10AED1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB106FA9-26CE-48C5-AEA5-FD1A5454AEE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update21:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FF6C211-AD55-40FE-9130-77164E586F62\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update25:*:*:*:*:*:*\",\"matchCriteriaId\":\"F40DB141-E5B3-4EC2-9E2F-2E27414FCCB1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*\",\"matchCriteriaId\":\"5831D70B-3854-4CB8-B88D-40F1743DAEE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEB101C9-CA38-4421-BC0C-C1AD47AA2CC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA302DF3-ABBB-4262-B206-4C0F7B5B1E91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9A8EBCB-5E6A-42F0-8D07-F3A3D1C850F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CD8A54E-185B-4D34-82EF-C0C05739EC12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FFC7F0D-1F32-4235-8359-277CE41382DF\"}]}]}],\"references\":[{\"url\":\"http://marc.info/?l=bugtraq\u0026m=138674073720143\u0026w=2\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://osvdb.org/98570\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2013-1440.html\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/63079\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/88009\",\"source\":\"secalert_us@oracle.com\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19187\",\"source\":\"secalert_us@oracle.com\"}]}}" } }
ghsa-pm5g-mcvv-5jvj
Vulnerability from github
Published
2022-05-14 00:02
Modified
2022-05-14 00:02
Details
Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors.
{ "affected": [], "aliases": [ "CVE-2013-5854" ], "database_specific": { "cwe_ids": [], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2013-10-16T18:55:00Z", "severity": "LOW" }, "details": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors.", "id": "GHSA-pm5g-mcvv-5jvj", "modified": "2022-05-14T00:02:23Z", "published": "2022-05-14T00:02:23Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5854" }, { "type": "WEB", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/88009" }, { "type": "WEB", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19187" }, { "type": "WEB", "url": "http://marc.info/?l=bugtraq\u0026m=138674073720143\u0026w=2" }, { "type": "WEB", "url": "http://osvdb.org/98570" }, { "type": "WEB", "url": "http://rhn.redhat.com/errata/RHSA-2013-1440.html" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/63079" } ], "schema_version": "1.4.0", "severity": [] }
rhsa-2013_1440
Vulnerability from csaf_redhat
Published
2013-10-17 17:31
Modified
2024-11-25 11:55
Summary
Red Hat Security Advisory: java-1.7.0-oracle security update
Notes
Topic
Updated java-1.7.0-oracle packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
[Updated 23rd October 2013]
The package list in this erratum has been updated to make the packages
available in the Red Hat Enterprise Linux 5 Desktop Supplementary channels
on the Red Hat Network.
Details
Oracle Java SE version 7 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2013-3829, CVE-2013-4002, CVE-2013-5772, CVE-2013-5774, CVE-2013-5775,
CVE-2013-5776, CVE-2013-5777, CVE-2013-5778, CVE-2013-5780, CVE-2013-5782,
CVE-2013-5783, CVE-2013-5784, CVE-2013-5787, CVE-2013-5788, CVE-2013-5789,
CVE-2013-5790, CVE-2013-5797, CVE-2013-5800, CVE-2013-5801, CVE-2013-5802,
CVE-2013-5803, CVE-2013-5804, CVE-2013-5809, CVE-2013-5810, CVE-2013-5812,
CVE-2013-5814, CVE-2013-5817, CVE-2013-5818, CVE-2013-5819, CVE-2013-5820,
CVE-2013-5823, CVE-2013-5824, CVE-2013-5825, CVE-2013-5829, CVE-2013-5830,
CVE-2013-5831, CVE-2013-5832, CVE-2013-5838, CVE-2013-5840, CVE-2013-5842,
CVE-2013-5843, CVE-2013-5844, CVE-2013-5846, CVE-2013-5848, CVE-2013-5849,
CVE-2013-5850, CVE-2013-5851, CVE-2013-5852, CVE-2013-5854)
All users of java-1.7.0-oracle are advised to upgrade to these updated
packages, which provide Oracle Java 7 Update 45 and resolve these issues.
All running instances of Oracle Java must be restarted for the update to
take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.\n\n[Updated 23rd October 2013]\nThe package list in this erratum has been updated to make the packages\navailable in the Red Hat Enterprise Linux 5 Desktop Supplementary channels\non the Red Hat Network.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2013-3829, CVE-2013-4002, CVE-2013-5772, CVE-2013-5774, CVE-2013-5775,\nCVE-2013-5776, CVE-2013-5777, CVE-2013-5778, CVE-2013-5780, CVE-2013-5782,\nCVE-2013-5783, CVE-2013-5784, CVE-2013-5787, CVE-2013-5788, CVE-2013-5789,\nCVE-2013-5790, CVE-2013-5797, CVE-2013-5800, CVE-2013-5801, CVE-2013-5802,\nCVE-2013-5803, CVE-2013-5804, CVE-2013-5809, CVE-2013-5810, CVE-2013-5812,\nCVE-2013-5814, CVE-2013-5817, CVE-2013-5818, CVE-2013-5819, CVE-2013-5820,\nCVE-2013-5823, CVE-2013-5824, CVE-2013-5825, CVE-2013-5829, CVE-2013-5830,\nCVE-2013-5831, CVE-2013-5832, CVE-2013-5838, CVE-2013-5840, CVE-2013-5842,\nCVE-2013-5843, CVE-2013-5844, CVE-2013-5846, CVE-2013-5848, CVE-2013-5849,\nCVE-2013-5850, CVE-2013-5851, CVE-2013-5852, CVE-2013-5854)\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 45 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:1440", "url": "https://access.redhat.com/errata/RHSA-2013:1440" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/java/javase/7u45-relnotes-2016950.html", "url": "http://www.oracle.com/technetwork/java/javase/7u45-relnotes-2016950.html" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/java/javase/7u40-relnotes-2004172.html", "url": "http://www.oracle.com/technetwork/java/javase/7u40-relnotes-2004172.html" }, { "category": "external", "summary": "1018713", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018713" }, { "category": "external", "summary": "1018717", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018717" }, { "category": "external", "summary": "1018720", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018720" }, { "category": "external", "summary": "1018727", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018727" }, { "category": "external", "summary": "1018736", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018736" }, { "category": "external", "summary": "1018750", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018750" }, { "category": "external", "summary": "1018755", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018755" }, { "category": "external", "summary": "1018785", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018785" }, { "category": "external", "summary": "1018831", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018831" }, { "category": "external", "summary": "1018972", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018972" }, { "category": "external", "summary": "1018977", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018977" }, { "category": "external", "summary": "1018984", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018984" }, { "category": "external", "summary": "1019108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019108" }, { "category": "external", "summary": "1019110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019110" }, { "category": "external", "summary": "1019113", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019113" }, { "category": "external", "summary": "1019115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019115" }, { "category": "external", "summary": "1019117", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019117" }, { "category": "external", "summary": "1019118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019118" }, { "category": "external", "summary": "1019123", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019123" }, { "category": "external", "summary": "1019127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019127" }, { "category": "external", "summary": "1019130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019130" }, { "category": "external", "summary": "1019131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019131" }, { "category": "external", "summary": "1019133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019133" }, { "category": "external", "summary": "1019137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019137" }, { "category": "external", "summary": "1019139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019139" }, { "category": "external", "summary": "1019145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019145" }, { "category": "external", "summary": "1019147", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019147" }, { "category": "external", "summary": "1019176", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019176" }, { "category": "external", "summary": "1019300", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019300" }, { "category": "external", "summary": "1019691", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019691" }, { "category": "external", "summary": "1019692", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019692" }, { "category": "external", "summary": "1019693", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019693" }, { "category": "external", "summary": "1019697", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019697" }, { "category": "external", "summary": "1019701", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019701" }, { "category": "external", "summary": "1019702", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019702" }, { "category": "external", "summary": "1019705", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019705" }, { "category": "external", "summary": "1019706", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019706" }, { "category": "external", "summary": "1019710", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019710" }, { "category": "external", "summary": "1019712", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019712" }, { "category": "external", "summary": "1019713", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019713" }, { "category": "external", "summary": "1019715", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019715" }, { "category": "external", "summary": "1019716", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019716" }, { "category": "external", "summary": "1019720", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019720" }, { "category": "external", "summary": "1019722", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019722" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_1440.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-oracle security update", "tracking": { "current_release_date": "2024-11-25T11:55:55+00:00", "generator": { "date": "2024-11-25T11:55:55+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.1" } }, "id": "RHSA-2013:1440", "initial_release_date": "2013-10-17T17:31:00+00:00", "revision_history": [ { "date": "2013-10-17T17:31:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-11-13T11:11:19+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-25T11:55:55+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::server" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.45-1jpp.2.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.45-1jpp.2.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.45-1jpp.2.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.45-1jpp.2.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.45-1jpp.2.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.45-1jpp.2.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.45-1jpp.1.el5_10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.45-1jpp.1.el5_10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.45-1jpp.1.el5_10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.45-1jpp.1.el5_10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.45-1jpp.1.el5_10?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.45-1jpp.1.el5_10?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.45-1jpp.2.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.45-1jpp.2.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "product_id": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.45-1jpp.2.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.45-1jpp.2.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.45-1jpp.2.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.45-1jpp.2.el6_4?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.45-1jpp.1.el5_10?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.45-1jpp.1.el5_10?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "product_id": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.45-1jpp.1.el5_10?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.45-1jpp.1.el5_10?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.45-1jpp.1.el5_10?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "product": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "product_id": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.45-1jpp.1.el5_10?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "product": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "product_id": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.45-1jpp.1.el5_10?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.10.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2013-3829", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019133" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java SE, Java SE Embedded component in Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: java.util.TimeZone does not restrict setting of default time zone (Libraries, 8001029)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-3829" }, { "category": "external", "summary": "RHBZ#1019133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-3829", "url": "https://www.cve.org/CVERecord?id=CVE-2013-3829" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-3829", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-3829" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: java.util.TimeZone does not restrict setting of default time zone (Libraries, 8001029)" }, { "cve": "CVE-2013-4002", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019176" } ], "notes": [ { "category": "description", "text": "A resource consumption issue was found in the way Xerces-J handled XML declarations. A remote attacker could use an XML document with a specially crafted declaration using a long pseudo-attribute name that, when parsed by an application using Xerces-J, would cause that application to use an excessive amount of CPU.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: XML parsing Denial of Service (JAXP, 8017298)", "title": "Vulnerability summary" }, { "category": "other", "text": "Fuse ESB Enterprise is now in Maintenance Support phase receiving only qualified Important and Critical impact security fixes. This issue has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Fuse Product Life Cycle: https://access.redhat.com/support/policy/updates/fusesource/\n\nRed Hat JBoss BRMS 5; Red Hat JBoss Enterprise Application Server 4 and 5; Red Hat JBoss Enterprise Web Platform 5; Red Hat JBoss SOA Platform 4 and 5; and Red Hat JBoss Web Server 1 are now in Phase 3, Extended Life Support, of their respective life cycles. This issue has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat JBoss Middleware and Red Hat JBoss Operations Network Product Update and Support Policy: https://access.redhat.com/support/policy/updates/jboss_notes/", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-4002" }, { "category": "external", "summary": "RHBZ#1019176", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019176" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-4002", "url": "https://www.cve.org/CVERecord?id=CVE-2013-4002" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-4002", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4002" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: XML parsing Denial of Service (JAXP, 8017298)" }, { "cve": "CVE-2013-5772", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018717" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java SE component in Oracle Java SE Java SE 7u40 and earlier and Java SE 6u60 and earlier allows remote attackers to affect integrity via unknown vectors related to jhat.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient html escaping in jhat (jhat, 8011081)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5772" }, { "category": "external", "summary": "RHBZ#1018717", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018717" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5772", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5772" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5772", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5772" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient html escaping in jhat (jhat, 8011081)" }, { "cve": "CVE-2013-5774", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019147" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Inet6Address class IPv6 address processing errors (Libraries, 8015743)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5774" }, { "category": "external", "summary": "RHBZ#1019147", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019147" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5774", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5774" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5774", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5774" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Inet6Address class IPv6 address processing errors (Libraries, 8015743)" }, { "cve": "CVE-2013-5775", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019722" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java SE and JavaFX components in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2013-5777.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5775" }, { "category": "external", "summary": "RHBZ#1019722", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019722" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5775", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5775" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5775", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5775" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)" }, { "cve": "CVE-2013-5776", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019712" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java SE and Java SE Embedded components in Oracle Java SE Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5776" }, { "category": "external", "summary": "RHBZ#1019712", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019712" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5776", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5776" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5776", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5776" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5777", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019722" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java SE and JavaFX components in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2013-5775.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5777" }, { "category": "external", "summary": "RHBZ#1019722", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019722" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5777", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5777" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5777", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5777" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)" }, { "cve": "CVE-2013-5778", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018984" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, 6u60 and earlier, 5.0u51 and earlier, and Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: image conversion out of bounds read (2D, 8014102)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5778" }, { "category": "external", "summary": "RHBZ#1018984", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018984" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5778", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5778" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5778", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5778" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: image conversion out of bounds read (2D, 8014102)" }, { "cve": "CVE-2013-5780", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018785" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: key data leak via toString() methods (Libraries, 8011071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5780" }, { "category": "external", "summary": "RHBZ#1018785", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018785" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5780", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5780" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5780", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5780" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: key data leak via toString() methods (Libraries, 8011071)" }, { "cve": "CVE-2013-5782", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019108" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect awt_getPixelByte/awt_getPixelShort/awt_setPixelByte/awt_setPixelShort image raster checks (2D, 8014093)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5782" }, { "category": "external", "summary": "RHBZ#1019108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019108" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5782", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5782" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5782", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5782" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect awt_getPixelByte/awt_getPixelShort/awt_setPixelByte/awt_setPixelShort image raster checks (2D, 8014093)" }, { "cve": "CVE-2013-5783", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019137" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Swing.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JTable not properly performing certain access checks (Swing, 8013744)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5783" }, { "category": "external", "summary": "RHBZ#1019137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5783", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5783" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5783", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5783" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JTable not properly performing certain access checks (Swing, 8013744)" }, { "cve": "CVE-2013-5784", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018727" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to SCRIPTING.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient InterfaceImplementor security checks (Scripting, 8017299)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5784" }, { "category": "external", "summary": "RHBZ#1018727", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018727" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5784", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5784" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5784", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5784" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient InterfaceImplementor security checks (Scripting, 8017299)" }, { "cve": "CVE-2013-5787", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019693" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5789, CVE-2013-5824, CVE-2013-5832, and CVE-2013-5852.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5787" }, { "category": "external", "summary": "RHBZ#1019693", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019693" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5787", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5787" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5787", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5787" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5788", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019692" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5788" }, { "category": "external", "summary": "RHBZ#1019692", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019692" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5788", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5788" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5788", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5788" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5789", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019697" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5787, CVE-2013-5824, CVE-2013-5832, and CVE-2013-5852.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5789" }, { "category": "external", "summary": "RHBZ#1019697", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019697" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5789", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5789" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5789", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5789" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5790", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018736" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to BEANS.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient security checks (Beans, 8012071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5790" }, { "category": "external", "summary": "RHBZ#1018736", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018736" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5790", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5790" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5790", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5790" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient security checks (Beans, 8012071)" }, { "cve": "CVE-2013-5797", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018720" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and JavaFX 2.2.40 and earlier allows remote authenticated users to affect integrity via unknown vectors related to Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient escaping of window title string (Javadoc, 8016675)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5797" }, { "category": "external", "summary": "RHBZ#1018720", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018720" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5797", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5797" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5797", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5797" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient escaping of window title string (Javadoc, 8016675)" }, { "cve": "CVE-2013-5800", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018755" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to JGSS.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: default keytab path information leak (JGSS, 8022931)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5800" }, { "category": "external", "summary": "RHBZ#1018755", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018755" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5800", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5800" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5800", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5800" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: default keytab path information leak (JGSS, 8022931)" }, { "cve": "CVE-2013-5801", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019710" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5801" }, { "category": "external", "summary": "RHBZ#1019710", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019710" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5801", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5801" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5801", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5801" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (2D)" }, { "cve": "CVE-2013-5802", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019130" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXP.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: javax.xml.transform.TransformerFactory does not properly honor XMLConstants.FEATURE_SECURE_PROCESSING (JAXP, 8012425)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5802" }, { "category": "external", "summary": "RHBZ#1019130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019130" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5802", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5802" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5802", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5802" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: javax.xml.transform.TransformerFactory does not properly honor XMLConstants.FEATURE_SECURE_PROCESSING (JAXP, 8012425)" }, { "cve": "CVE-2013-5803", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018713" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JGSS.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient checks of KDC replies (JGSS, 8014341)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5803" }, { "category": "external", "summary": "RHBZ#1018713", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018713" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5803", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5803" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5803", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5803" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.6, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: insufficient checks of KDC replies (JGSS, 8014341)" }, { "cve": "CVE-2013-5804", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019131" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, and JRockit R27.7.6 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: javac does not ignore certain ignorable characters (Javadoc, 8016653)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5804" }, { "category": "external", "summary": "RHBZ#1019131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5804", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5804" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5804", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5804" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: javac does not ignore certain ignorable characters (Javadoc, 8016653)" }, { "cve": "CVE-2013-5809", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019113" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-5829.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JPEGImageReader and JPEGImageWriter missing band size checks (2D, 8013510)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5809" }, { "category": "external", "summary": "RHBZ#1019113", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019113" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5809", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5809" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5809", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5809" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: JPEGImageReader and JPEGImageWriter missing band size checks (2D, 8013510)" }, { "cve": "CVE-2013-5810", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019722" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5810" }, { "category": "external", "summary": "RHBZ#1019722", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019722" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5810", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5810" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5810", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5810" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)" }, { "cve": "CVE-2013-5812", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019706" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5812" }, { "category": "external", "summary": "RHBZ#1019706", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019706" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5812", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5812" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5812", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5812" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5814", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019117" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: RMIConnection stub missing permission check (CORBA, 8011157)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5814" }, { "category": "external", "summary": "RHBZ#1019117", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019117" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5814", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5814" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5814", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5814" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: RMIConnection stub missing permission check (CORBA, 8011157)" }, { "cve": "CVE-2013-5817", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019118" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JNDI.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: VersionHelper12 does not honor modifyThreadGroup restriction (JNDI, 8013739)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5817" }, { "category": "external", "summary": "RHBZ#1019118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5817", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5817" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5817", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5817" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: VersionHelper12 does not honor modifyThreadGroup restriction (JNDI, 8013739)" }, { "cve": "CVE-2013-5818", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019713" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5819 and CVE-2013-5831.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5818" }, { "category": "external", "summary": "RHBZ#1019713", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019713" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5818", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5818" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5818", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5818" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5819", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019715" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5818 and CVE-2013-5831.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5819" }, { "category": "external", "summary": "RHBZ#1019715", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019715" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5819", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5819" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5819", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5819" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5820", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018972" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via vectors related to JAX-WS.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient security checks (JAXWS, 8017505)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5820" }, { "category": "external", "summary": "RHBZ#1018972", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018972" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5820", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5820" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5820", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5820" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient security checks (JAXWS, 8017505)" }, { "cve": "CVE-2013-5823", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019145" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via unknown vectors related to Security.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: com.sun.org.apache.xml.internal.security.utils.UnsyncByteArrayOutputStream Denial of Service (Security, 8021290)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5823" }, { "category": "external", "summary": "RHBZ#1019145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019145" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5823", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5823" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5823", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5823" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: com.sun.org.apache.xml.internal.security.utils.UnsyncByteArrayOutputStream Denial of Service (Security, 8021290)" }, { "cve": "CVE-2013-5824", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019691" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5787, CVE-2013-5789, CVE-2013-5832, and CVE-2013-5852.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5824" }, { "category": "external", "summary": "RHBZ#1019691", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019691" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5824", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5824" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5824", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5824" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5825", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019139" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect availability via vectors related to JAXP.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: XML parsing Denial of Service (JAXP, 8014530)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5825" }, { "category": "external", "summary": "RHBZ#1019139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5825", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5825" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5825", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5825" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: XML parsing Denial of Service (JAXP, 8014530)" }, { "cve": "CVE-2013-5829", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019115" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-5809.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Java2d Disposer security bypass (2D, 8017287)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5829" }, { "category": "external", "summary": "RHBZ#1019115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019115" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5829", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5829" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5829", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5829" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Java2d Disposer security bypass (2D, 8017287)" }, { "cve": "CVE-2013-5830", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019110" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: checkPackageAccess missing security check (Libraries, 8017291)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5830" }, { "category": "external", "summary": "RHBZ#1019110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019110" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5830", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5830" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5830", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5830" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: checkPackageAccess missing security check (Libraries, 8017291)" }, { "cve": "CVE-2013-5831", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019716" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5818 and CVE-2013-5819.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5831" }, { "category": "external", "summary": "RHBZ#1019716", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019716" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5831", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5831" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5831", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5831" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5832", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019702" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5787, CVE-2013-5789, CVE-2013-5824, and CVE-2013-5852.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5832" }, { "category": "external", "summary": "RHBZ#1019702", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019702" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5832", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5832" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5832", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5832" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5838", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019300" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u25 and earlier, and Java SE Embedded 7u25 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Vulnerability in Libraries component (Libraries, 7023639)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5838" }, { "category": "external", "summary": "RHBZ#1019300", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019300" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5838", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5838" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5838", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5838" }, { "category": "external", "summary": "http://seclists.org/fulldisclosure/2013/Oct/116", "url": "http://seclists.org/fulldisclosure/2013/Oct/116" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "category": "external", "summary": "http://www.security-explorations.com/materials/SE-2012-01-ORACLE-13.pdf", "url": "http://www.security-explorations.com/materials/SE-2012-01-ORACLE-13.pdf" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Vulnerability in Libraries component (Libraries, 7023639)" }, { "cve": "CVE-2013-5840", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018831" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Libraries.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: getDeclaringClass() information leak (Libraries, 8014349)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5840" }, { "category": "external", "summary": "RHBZ#1018831", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018831" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5840", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5840" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5840", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5840" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: getDeclaringClass() information leak (Libraries, 8014349)" }, { "cve": "CVE-2013-5842", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019123" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-5850.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectInputStream/ObjectOutputStream missing checks (Libraries, 8014987)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5842" }, { "category": "external", "summary": "RHBZ#1019123", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019123" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5842", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5842" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5842", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5842" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ObjectInputStream/ObjectOutputStream missing checks (Libraries, 8014987)" }, { "cve": "CVE-2013-5843", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019701" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JavaFX 2.2.40 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5843" }, { "category": "external", "summary": "RHBZ#1019701", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019701" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5843", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5843" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5843", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5843" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (2D)" }, { "cve": "CVE-2013-5844", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019722" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5844" }, { "category": "external", "summary": "RHBZ#1019722", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019722" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5844", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5844" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5844", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5844" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)" }, { "cve": "CVE-2013-5846", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019722" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, and JavaFX 2.2.40 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to JavaFX.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5846" }, { "category": "external", "summary": "RHBZ#1019722", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019722" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5846", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5846" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5846", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5846" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)" }, { "cve": "CVE-2013-5848", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019720" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and JavaFX 2.2.40 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5848" }, { "category": "external", "summary": "RHBZ#1019720", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019720" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5848", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5848" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5848", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5848" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5849", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018750" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to AWT.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: insufficient DataFlavor security checks (AWT, 8012277)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5849" }, { "category": "external", "summary": "RHBZ#1018750", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018750" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5849", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5849" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5849", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5849" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: insufficient DataFlavor security checks (AWT, 8012277)" }, { "cve": "CVE-2013-5850", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019127" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2013-5842.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Missing CORBA security checks (Libraries, 8017196)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5850" }, { "category": "external", "summary": "RHBZ#1019127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019127" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5850", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5850" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5850", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5850" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Missing CORBA security checks (Libraries, 8017196)" }, { "cve": "CVE-2013-5851", "discovery_date": "2013-10-09T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1018977" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality via vectors related to JAXP.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: XML stream factory finder information leak (JAXP, 8013502)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5851" }, { "category": "external", "summary": "RHBZ#1018977", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1018977" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5851", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5851" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5851", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5851" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: XML stream factory finder information leak (JAXP, 8013502)" }, { "cve": "CVE-2013-5852", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019705" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-5787, CVE-2013-5789, CVE-2013-5824, and CVE-2013-5832.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5852" }, { "category": "external", "summary": "RHBZ#1019705", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019705" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5852", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5852" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5852", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5852" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u45 (Deployment)" }, { "cve": "CVE-2013-5854", "discovery_date": "2013-10-15T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "1019722" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-5854" }, { "category": "external", "summary": "RHBZ#1019722", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1019722" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-5854", "url": "https://www.cve.org/CVERecord?id=CVE-2013-5854" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-5854", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-5854" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" } ], "release_date": "2013-10-15T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-10-17T17:31:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/site/articles/11258", "product_ids": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:1440" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.src", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.1.el5_10.x86_64", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.i386", "5Server-Supplementary-5.10.Z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.1.el5_10.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.45-1jpp.2.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.45-1jpp.2.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: multiple unspecified vulnerabilities fixed in 7u45 (JavaFX)" } ] }
gsd-2013-5854
Vulnerability from gsd
Modified
2023-12-13 01:22
Details
Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors.
Aliases
Aliases
{ "GSD": { "alias": "CVE-2013-5854", "description": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors.", "id": "GSD-2013-5854", "references": [ "https://www.suse.com/security/cve/CVE-2013-5854.html", "https://access.redhat.com/errata/RHSA-2013:1440" ] }, "gsd": { "metadata": { "exploitCode": "unknown", "remediation": "unknown", "reportConfidence": "confirmed", "type": "vulnerability" }, "osvSchema": { "aliases": [ "CVE-2013-5854" ], "details": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors.", "id": "GSD-2013-5854", "modified": "2023-12-13T01:22:21.758257Z", "schema_version": "1.4.0" } }, "namespaces": { "cve.org": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-5854", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "RHSA-2013:1440", "refsource": "REDHAT", "url": "http://rhn.redhat.com/errata/RHSA-2013-1440.html" }, { "name": "98570", "refsource": "OSVDB", "url": "http://osvdb.org/98570" }, { "name": "HPSBUX02944", "refsource": "HP", "url": "http://marc.info/?l=bugtraq\u0026m=138674073720143\u0026w=2" }, { "name": "oval:org.mitre.oval:def:19187", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19187" }, { "name": "oracle-cpuoct2013-cve20135854(88009)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/88009" }, { "name": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "name": "63079", "refsource": "BID", "url": "http://www.securityfocus.com/bid/63079" } ] } }, "nvd.nist.gov": { "configurations": { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.2.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.2.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.2.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:javafx:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "2.2.40", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.2.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:javafx:2.2.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:1.7.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jdk:*:update40:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.7.0", "vulnerable": true } ], "operator": "OR" }, { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update25:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update9:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update15:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update6:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update13:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update21:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update10:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update11:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update17:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:*:update40:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "1.7.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update5:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true }, { "cpe23Uri": "cpe:2.3:a:oracle:jre:1.7.0:update7:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true } ], "operator": "OR" } ] }, "cve": { "CVE_data_meta": { "ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-5854" }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "en", "value": "Unspecified vulnerability in Oracle Java SE 7u40 and earlier and JavaFX 2.2.40 and earlier allows remote attackers to affect confidentiality via unknown vectors." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ] }, "references": { "reference_data": [ { "name": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "refsource": "CONFIRM", "tags": [ "Vendor Advisory" ], "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html" }, { "name": "RHSA-2013:1440", "refsource": "REDHAT", "tags": [], "url": "http://rhn.redhat.com/errata/RHSA-2013-1440.html" }, { "name": "98570", "refsource": "OSVDB", "tags": [], "url": "http://osvdb.org/98570" }, { "name": "63079", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/63079" }, { "name": "HPSBUX02944", "refsource": "HP", "tags": [], "url": "http://marc.info/?l=bugtraq\u0026m=138674073720143\u0026w=2" }, { "name": "oracle-cpuoct2013-cve20135854(88009)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/88009" }, { "name": "oval:org.mitre.oval:def:19187", "refsource": "OVAL", "tags": [], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19187" } ] } }, "impact": { "baseMetricV2": { "cvssV2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N", "version": "2.0" }, "exploitabilityScore": 4.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "LOW", "userInteractionRequired": false } }, "lastModifiedDate": "2022-05-13T14:57Z", "publishedDate": "2013-10-16T18:55Z" } } }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.