rhsa-2013_0963
Vulnerability from csaf_redhat
Published
2013-06-20 14:42
Modified
2024-11-14 13:00
Summary
Red Hat Security Advisory: java-1.7.0-oracle security update
Notes
Topic
Updated java-1.7.0-oracle packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Oracle Java SE version 7 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2013-1500, CVE-2013-1571, CVE-2013-2400, CVE-2013-2407, CVE-2013-2412,
CVE-2013-2437, CVE-2013-2442, CVE-2013-2443, CVE-2013-2444, CVE-2013-2445,
CVE-2013-2446, CVE-2013-2447, CVE-2013-2448, CVE-2013-2449, CVE-2013-2450,
CVE-2013-2451, CVE-2013-2452, CVE-2013-2453, CVE-2013-2454, CVE-2013-2455,
CVE-2013-2456, CVE-2013-2457, CVE-2013-2458, CVE-2013-2459, CVE-2013-2460,
CVE-2013-2461, CVE-2013-2462, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465,
CVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471,
CVE-2013-2472, CVE-2013-2473, CVE-2013-3744)
Red Hat would like to thank Tim Brown for reporting CVE-2013-1500, and
US-CERT for reporting CVE-2013-1571. US-CERT acknowledges Oracle as the
original reporter of CVE-2013-1571.
All users of java-1.7.0-oracle are advised to upgrade to these updated
packages, which provide Oracle Java 7 Update 25 and resolve these issues.
All running instances of Oracle Java must be restarted for the update to
take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ "document": { "aggregate_severity": { "namespace": "https://access.redhat.com/security/updates/classification/", "text": "Critical" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "summary", "text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.", "title": "Topic" }, { "category": "general", "text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2013-1500, CVE-2013-1571, CVE-2013-2400, CVE-2013-2407, CVE-2013-2412,\nCVE-2013-2437, CVE-2013-2442, CVE-2013-2443, CVE-2013-2444, CVE-2013-2445,\nCVE-2013-2446, CVE-2013-2447, CVE-2013-2448, CVE-2013-2449, CVE-2013-2450,\nCVE-2013-2451, CVE-2013-2452, CVE-2013-2453, CVE-2013-2454, CVE-2013-2455,\nCVE-2013-2456, CVE-2013-2457, CVE-2013-2458, CVE-2013-2459, CVE-2013-2460,\nCVE-2013-2461, CVE-2013-2462, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465,\nCVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471,\nCVE-2013-2472, CVE-2013-2473, CVE-2013-3744)\n\nRed Hat would like to thank Tim Brown for reporting CVE-2013-1500, and\nUS-CERT for reporting CVE-2013-1571. US-CERT acknowledges Oracle as the\noriginal reporter of CVE-2013-1571.\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 25 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.", "title": "Details" }, { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", "title": "Terms of Use" } ], "publisher": { "category": "vendor", "contact_details": "https://access.redhat.com/security/team/contact/", "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", "name": "Red Hat Product Security", "namespace": "https://www.redhat.com" }, "references": [ { "category": "self", "summary": "https://access.redhat.com/errata/RHSA-2013:0963", "url": "https://access.redhat.com/errata/RHSA-2013:0963" }, { "category": "external", "summary": "https://access.redhat.com/security/updates/classification/#critical", "url": "https://access.redhat.com/security/updates/classification/#critical" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "975122", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975122" }, { "category": "external", "summary": "975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "975130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975130" }, { "category": "external", "summary": "975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "975145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975145" }, { "category": "external", "summary": "975146", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146" }, { "category": "external", "summary": "975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "975757", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757" }, { "category": "external", "summary": "975761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761" }, { "category": "external", "summary": "975764", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764" }, { "category": "external", "summary": "975769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975769" }, { "category": "external", "summary": "975770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770" }, { "category": "external", "summary": "975773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773" }, { "category": "external", "summary": "975774", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975774" }, { "category": "external", "summary": "975775", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975775" }, { "category": "self", "summary": "Canonical URL", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0963.json" } ], "title": "Red Hat Security Advisory: java-1.7.0-oracle security update", "tracking": { "current_release_date": "2024-11-14T13:00:51+00:00", "generator": { "date": "2024-11-14T13:00:51+00:00", "engine": { "name": "Red Hat SDEngine", "version": "4.2.0" } }, "id": "RHSA-2013:0963", "initial_release_date": "2013-06-20T14:42:00+00:00", "revision_history": [ { "date": "2013-06-20T14:42:00+00:00", "number": "1", "summary": "Initial version" }, { "date": "2013-11-13T11:09:17+00:00", "number": "2", "summary": "Last updated version" }, { "date": "2024-11-14T13:00:51+00:00", "number": "3", "summary": "Last generated version" } ], "status": "final", "version": "3" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:5::server" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } }, { "category": "product_name", "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product": { "name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z", "product_identification_helper": { "cpe": "cpe:/a:redhat:rhel_extras:6" } } } ], "category": "product_family", "name": "Red Hat Enterprise Linux Supplementary" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1" } } } ], "category": "architecture", "name": "x86_64" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1" } } } ], "category": "architecture", "name": "i386" }, { "branches": [ { "category": "product_version", "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } }, { "category": "product_version", "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "product": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "product_identification_helper": { "purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1" } } } ], "category": "architecture", "name": "i686" } ], "category": "vendor", "name": "Red Hat" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)", "product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "relates_to_product_reference": "5Server-Supplementary-5.9.Z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)", "product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Client-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)", "product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)", "product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Server-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" }, { "category": "default_component_of", "full_product_name": { "name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)", "product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" }, "product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "relates_to_product_reference": "6Workstation-Supplementary-6.4.z" } ] }, "vulnerabilities": [ { "acknowledgments": [ { "names": [ "Tim Brown" ] } ], "cve": "CVE-2013-1500", "discovery_date": "2013-01-03T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975148" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Insecure shared memory permissions (2D, 8001034)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1500" }, { "category": "external", "summary": "RHBZ#975148", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1500", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1500" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: Insecure shared memory permissions (2D, 8001034)" }, { "acknowledgments": [ { "names": [ "US-CERT" ] } ], "cve": "CVE-2013-1571", "discovery_date": "2013-06-11T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "973474" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-1571" }, { "category": "external", "summary": "RHBZ#973474", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-1571", "url": "https://www.cve.org/CVERecord?id=CVE-2013-1571" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571" }, { "category": "external", "summary": "http://www.kb.cert.org/vuls/id/225657", "url": "http://www.kb.cert.org/vuls/id/225657" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)" }, { "cve": "CVE-2013-2400", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975774" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-3744.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2400" }, { "category": "external", "summary": "RHBZ#975774", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975774" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2400", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2400" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2400", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2400" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2407", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975127" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2407" }, { "category": "external", "summary": "RHBZ#975127", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2407", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2407" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)" }, { "cve": "CVE-2013-2412", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975144" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: JConsole SSL support (Serviceability, 8003703)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2412" }, { "category": "external", "summary": "RHBZ#975144", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2412", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2412" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: JConsole SSL support (Serviceability, 8003703)" }, { "cve": "CVE-2013-2437", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975773" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2437" }, { "category": "external", "summary": "RHBZ#975773", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2437", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2437" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2442", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975770" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2466 and CVE-2013-2468.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2442" }, { "category": "external", "summary": "RHBZ#975770", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2442", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2442" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2443", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975137" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2443" }, { "category": "external", "summary": "RHBZ#975137", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2443", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2443" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)" }, { "cve": "CVE-2013-2444", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975131" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Resource denial of service (AWT, 8001038)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2444" }, { "category": "external", "summary": "RHBZ#975131", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2444", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2444" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Resource denial of service (AWT, 8001038)" }, { "cve": "CVE-2013-2445", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975124" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Hotspot. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"handling of memory allocation errors.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2445" }, { "category": "external", "summary": "RHBZ#975124", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2445", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2445" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)" }, { "cve": "CVE-2013-2446", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975132" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: output stream access restrictions (CORBA, 8000642)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2446" }, { "category": "external", "summary": "RHBZ#975132", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2446", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2446" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: output stream access restrictions (CORBA, 8000642)" }, { "cve": "CVE-2013-2447", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975140" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Prevent revealing the local address (Networking, 8001318)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2447" }, { "category": "external", "summary": "RHBZ#975140", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2447", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2447" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Prevent revealing the local address (Networking, 8001318)" }, { "cve": "CVE-2013-2448", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975125" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Better access restrictions (Sound, 8006328)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2448" }, { "category": "external", "summary": "RHBZ#975125", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2448", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2448" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Better access restrictions (Sound, 8006328)" }, { "cve": "CVE-2013-2449", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975145" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to GnomeFileTypeDetector and a missing check for read permissions for a path.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2449" }, { "category": "external", "summary": "RHBZ#975145", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975145" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2449", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2449" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2449", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2449" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)" }, { "cve": "CVE-2013-2450", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975141" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2450" }, { "category": "external", "summary": "RHBZ#975141", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2450", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2450" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)" }, { "cve": "CVE-2013-2451", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975146" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper enforcement of exclusive port binds when running on Windows, which allows attackers to bind to ports that are already in use.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: exclusive port binding (Networking, 7170730)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2451" }, { "category": "external", "summary": "RHBZ#975146", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2451", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2451" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "HIGH", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 3.7, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Low" } ], "title": "OpenJDK: exclusive port binding (Networking, 7170730)" }, { "cve": "CVE-2013-2452", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975138" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Unique VMIDs (Libraries, 8001033)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2452" }, { "category": "external", "summary": "RHBZ#975138", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2452", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2452" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Unique VMIDs (Libraries, 8001033)" }, { "cve": "CVE-2013-2453", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975134" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2453" }, { "category": "external", "summary": "RHBZ#975134", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2453", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2453" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)" }, { "cve": "CVE-2013-2454", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975129" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly restrict access to certain class packages in the SerialJavaObject class, which allows remote attackers to bypass the Java sandbox.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2454" }, { "category": "external", "summary": "RHBZ#975129", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2454", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2454" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)" }, { "cve": "CVE-2013-2455", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975139" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: getEnclosing* checks (Libraries, 8007812)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2455" }, { "category": "external", "summary": "RHBZ#975139", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2455", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2455" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: getEnclosing* checks (Libraries, 8007812)" }, { "cve": "CVE-2013-2456", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975142" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2456" }, { "category": "external", "summary": "RHBZ#975142", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2456", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2456" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)" }, { "cve": "CVE-2013-2457", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975133" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Proper class checking (JMX, 8008120)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2457" }, { "category": "external", "summary": "RHBZ#975133", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2457", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2457" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Proper class checking (JMX, 8008120)" }, { "cve": "CVE-2013-2458", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975130" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via \"an error related to method handles.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Method handles (Libraries, 8009424)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2458" }, { "category": "external", "summary": "RHBZ#975130", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975130" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2458", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2458" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2458", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2458" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "OpenJDK: Method handles (Libraries, 8009424)" }, { "cve": "CVE-2013-2459", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975121" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2459" }, { "category": "external", "summary": "RHBZ#975121", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2459", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2459" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)" }, { "cve": "CVE-2013-2460", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975122" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"insufficient access checks\" in the tracing component.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: tracing insufficient access checks (Serviceability, 8010209)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2460" }, { "category": "external", "summary": "RHBZ#975122", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975122" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2460", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2460" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2460", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2460" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: tracing insufficient access checks (Serviceability, 8010209)" }, { "cve": "CVE-2013-2461", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975126" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2461" }, { "category": "external", "summary": "RHBZ#975126", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2461", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2461" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ], "title": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)" }, { "cve": "CVE-2013-2462", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975769" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2462" }, { "category": "external", "summary": "RHBZ#975769", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975769" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2462", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2462" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2462", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2462" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2463", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975115" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image attribute verification (2D, 8012438)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2463" }, { "category": "external", "summary": "RHBZ#975115", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2463", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2463" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image attribute verification (2D, 8012438)" }, { "cve": "CVE-2013-2464", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975757" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2463, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, and CVE-2013-2473.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (2D)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2464" }, { "category": "external", "summary": "RHBZ#975757", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2464", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2464" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (2D)" }, { "cve": "CVE-2013-2465", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975118" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image channel verification (2D, 8012597)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2465" }, { "category": "external", "summary": "RHBZ#975118", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2465", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2465" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" }, { "category": "external", "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "exploit_status", "date": "2022-03-28T00:00:00+00:00", "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog" }, { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image channel verification (2D, 8012597)" }, { "cve": "CVE-2013-2466", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975764" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2468.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2466" }, { "category": "external", "summary": "RHBZ#975764", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2466", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2466" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2468", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975761" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2466.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2468" }, { "category": "external", "summary": "RHBZ#975761", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2468", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2468" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" }, { "cve": "CVE-2013-2469", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975120" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect image layout verification (2D, 8012601)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2469" }, { "category": "external", "summary": "RHBZ#975120", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2469", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2469" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect image layout verification (2D, 8012601)" }, { "cve": "CVE-2013-2470", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975099" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2470" }, { "category": "external", "summary": "RHBZ#975099", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2470", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2470" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)" }, { "cve": "CVE-2013-2471", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975102" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2471" }, { "category": "external", "summary": "RHBZ#975102", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2471", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2471" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)" }, { "cve": "CVE-2013-2472", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975107" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2472" }, { "category": "external", "summary": "RHBZ#975107", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2472", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2472" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)" }, { "cve": "CVE-2013-2473", "discovery_date": "2013-06-10T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975110" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.", "title": "Vulnerability description" }, { "category": "summary", "text": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-2473" }, { "category": "external", "summary": "RHBZ#975110", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-2473", "url": "https://www.cve.org/CVERecord?id=CVE-2013-2473" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Critical" } ], "title": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)" }, { "cve": "CVE-2013-3744", "discovery_date": "2013-06-18T00:00:00+00:00", "ids": [ { "system_name": "Red Hat Bugzilla ID", "text": "975775" } ], "notes": [ { "category": "description", "text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2400.", "title": "Vulnerability description" }, { "category": "summary", "text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)", "title": "Vulnerability summary" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://access.redhat.com/security/cve/CVE-2013-3744" }, { "category": "external", "summary": "RHBZ#975775", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=975775" }, { "category": "external", "summary": "https://www.cve.org/CVERecord?id=CVE-2013-3744", "url": "https://www.cve.org/CVERecord?id=CVE-2013-3744" }, { "category": "external", "summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-3744", "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-3744" }, { "category": "external", "summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html", "url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html" } ], "release_date": "2013-06-18T00:00:00+00:00", "remediations": [ { "category": "vendor_fix", "date": "2013-06-20T14:42:00+00:00", "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258", "product_ids": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2013:0963" } ], "scores": [ { "cvss_v2": { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0" }, "products": [ "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386", "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686", "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Moderate" } ], "title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)" } ] }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.