rhsa-2012_1223
Vulnerability from csaf_redhat
Published
2012-09-03 12:57
Modified
2024-11-05 17:50
Summary
Red Hat Security Advisory: java-1.7.0-openjdk security update
Notes
Topic
Updated java-1.7.0-openjdk packages that fix several security issues are
now available for Red Hat Enterprise Linux 6.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details
These packages provide the OpenJDK 7 Java Runtime Environment and the
OpenJDK 7 Software Development Kit.
Multiple improper permission check issues were discovered in the Beans
component in OpenJDK. An untrusted Java application or applet could use
these flaws to bypass Java sandbox restrictions. (CVE-2012-4681,
CVE-2012-1682, CVE-2012-3136)
A hardening fix was applied to the AWT component in OpenJDK, removing
functionality from the restricted SunToolkit class that was used in
combination with other flaws to bypass Java sandbox restrictions.
(CVE-2012-0547)
All users of java-1.7.0-openjdk are advised to upgrade to these updated
packages, which resolve these issues. All running instances of OpenJDK Java
must be restarted for the update to take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-openjdk packages that fix several security issues are\nnow available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "These packages provide the OpenJDK 7 Java Runtime Environment and the\nOpenJDK 7 Software Development Kit.\n\nMultiple improper permission check issues were discovered in the Beans\ncomponent in OpenJDK. An untrusted Java application or applet could use\nthese flaws to bypass Java sandbox restrictions. (CVE-2012-4681,\nCVE-2012-1682, CVE-2012-3136)\n\nA hardening fix was applied to the AWT component in OpenJDK, removing\nfunctionality from the restricted SunToolkit class that was used in\ncombination with other flaws to bypass Java sandbox restrictions.\n(CVE-2012-0547)\n\nAll users of java-1.7.0-openjdk are advised to upgrade to these updated\npackages, which resolve these issues. All running instances of OpenJDK Java\nmust be restarted for the update to take effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2012:1223", "url": "https://access.redhat.com/errata/RHSA-2012:1223" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#important", "url": "https://access.redhat.com/security/updates/classification/#important" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html" }, { "category": "external", "summary": "852051", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=852051" }, { "category": "external", "summary": "853097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853097" }, { "category": "external", "summary": "853138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853138" }, { "category": "external", "summary": "853228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853228" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_1223.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-openjdk security update", "tracking": { "current_release_date": "2024-11-05T17:50:24+00:00", "generator": { "date": "2024-11-05T17:50:24+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.1.1" } }, "id": "RHSA-2012:1223", "initial_release_date": "2012-09-03T12:57:00+00:00", "revision_history": [ { "date": "2012-09-03T12:57:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2012-09-03T13:00:27+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-05T17:50:24+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::client" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::computenode" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z", "product_identification_helper": { "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "product_id": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.5-2.2.1.el6_3.3?arch=src\u0026epoch=1" } } } ], "category": "architecture", "name": "src" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.5-2.2.1.el6_3.3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.5-2.2.1.el6_3.3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.5-2.2.1.el6_3.3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.5-2.2.1.el6_3.3?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "product_id": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.5-2.2.1.el6_3.3?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product_id": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-devel@1.7.0.5-2.2.1.el6_3.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product_id": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-src@1.7.0.5-2.2.1.el6_3.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product_id": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-demo@1.7.0.5-2.2.1.el6_3.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product_id": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-debuginfo@1.7.0.5-2.2.1.el6_3.3?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product_id": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk@1.7.0.5-2.2.1.el6_3.3?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "product": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "product_id": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-openjdk-javadoc@1.7.0.5-2.2.1.el6_3.3?arch=noarch\u0026epoch=1" } } } ], "category": "architecture", "name": "noarch" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)", "product_id": "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Client-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)", "product_id": "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Client-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux HPC Node Optional (v. 6)", "product_id": "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6ComputeNode-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)", "product_id": "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Server-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)", "product_id": "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Server-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)", "product_id": "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Workstation-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch" }, "product_reference": "java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "relates_to_product_reference": "6Workstation-optional-6.3.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 6)", "product_id": "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" }, "product_reference": "java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "relates_to_product_reference": "6Workstation-optional-6.3.z" } ] }, "vulnerabilities": [ { "cve": "CVE-2012-0547", "discovery_date": "2012-08-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "853228" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and remote attack vectors involving AWT and \"a security-in-depth issue that is not directly exploitable but which can be used to aggravate security vulnerabilities that can be directly exploited.\" NOTE: this identifier was assigned by the Oracle CNA, but CVE is not intended to cover defense-in-depth issues that are only exposed by the presence of other vulnerabilities. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to \"toolkit internals references.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AWT hardening fixes (AWT, 7163201)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-0547" }, { "category": "external", "summary": "RHBZ#853228", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853228" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-0547", "url": "https://www.cve.org/CVERecord?id=CVE-2012-0547" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0547", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0547" } ], "release_date": "2012-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-03T12:57:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1223" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 0.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:N", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: AWT hardening fixes (AWT, 7163201)" }, { "cve": "CVE-2012-1682", "discovery_date": "2012-08-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "853097" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-3136. NOTE: Oracle has not commented on claims from a downstream vendor that this issue is related to \"XMLDecoder security issue via ClassFinder.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: beans ClassFinder insufficient permission checks (beans, 7162476)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-1682" }, { "category": "external", "summary": "RHBZ#853097", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853097" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-1682", "url": "https://www.cve.org/CVERecord?id=CVE-2012-1682" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-1682", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-1682" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html" } ], "release_date": "2012-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-03T12:57:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1223" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: beans ClassFinder insufficient permission checks (beans, 7162476)" }, { "cve": "CVE-2012-3136", "discovery_date": "2012-08-30T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "853138" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Beans, a different vulnerability than CVE-2012-1682.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: beans MethodElementHandler insufficient permission checks (beans, 7194567)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-3136" }, { "category": "external", "summary": "RHBZ#853138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=853138" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-3136", "url": "https://www.cve.org/CVERecord?id=CVE-2012-3136" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-3136", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-3136" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html" } ], "release_date": "2012-08-30T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-03T12:57:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1223" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: beans MethodElementHandler insufficient permission checks (beans, 7194567)" }, { "cve": "CVE-2012-4681", "discovery_date": "2012-08-27T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "852051" } ], "notes": [ { "category": "description", "text": "Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allow remote attackers to execute arbitrary code via a crafted applet that bypasses SecurityManager restrictions by (1) using com.sun.beans.finder.ClassFinder.findClass and leveraging an exception with the forName method to access restricted classes from arbitrary packages such as sun.awt.SunToolkit, then (2) using \"reflection with a trusted immediate caller\" to leverage the getField method to access and modify private fields, as exploited in the wild in August 2012 using Gondzz.class and Gondvv.class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: beans insufficient permission checks, Java 7 0day (beans, 7162473)", "title": "Vulnerability summary" }, { "category": "other", "text": "This flaw allowed an attacker to circumvent all restrictions applied by the Java security manager. The Java security manager is used to sandbox Java applets in web browsers, but is also used in a variety of other applications.\n\nRed Hat has tested the flaw and confirmed that it affected Java SE 7 provided by OpenJDK 7 (java-1.7.0-openjdk), Oracle Java SE 7 (java-1.7.0-oracle) and IBM Java SE 7 (java-1.7.0-ibm) as shipped with Red Hat Enterprise Linux 6. Updates correcting this issue were released for all affected packages.", "title": "Statement" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2012-4681" }, { "category": "external", "summary": "RHBZ#852051", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=852051" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2012-4681", "url": "https://www.cve.org/CVERecord?id=CVE-2012-4681" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-4681", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-4681" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html", "url": "http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2012-08-27T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2012-09-03T12:57:00+00:00", "details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2012:1223" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Client-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Client-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Client-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6ComputeNode-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Server-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Server-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Server-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.src", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-debuginfo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-demo-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-devel-1:1.7.0.5-2.2.1.el6_3.3.x86_64", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-javadoc-1:1.7.0.5-2.2.1.el6_3.3.noarch", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.i686", "6Workstation-optional-6.3.z:java-1.7.0-openjdk-src-1:1.7.0.5-2.2.1.el6_3.3.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-03T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: beans insufficient permission checks, Java 7 0day (beans, 7162473)" } ] }
Loading...
Loading...
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.