rhsa-2013_0963
Vulnerability from csaf_redhat
Published
2013-06-20 14:42
Modified
2024-09-13 08:25
Summary
Red Hat Security Advisory: java-1.7.0-oracle security update
Notes
Topic
Updated java-1.7.0-oracle packages that fix several security issues are now
available for Red Hat Enterprise Linux 5 and 6 Supplementary.
The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details
Oracle Java SE version 7 includes the Oracle Java Runtime Environment and
the Oracle Java Software Development Kit.
This update fixes several vulnerabilities in the Oracle Java Runtime
Environment and the Oracle Java Software Development Kit. Further
information about these flaws can be found on the Oracle Java SE Critical
Patch Update Advisory page, listed in the References section.
(CVE-2013-1500, CVE-2013-1571, CVE-2013-2400, CVE-2013-2407, CVE-2013-2412,
CVE-2013-2437, CVE-2013-2442, CVE-2013-2443, CVE-2013-2444, CVE-2013-2445,
CVE-2013-2446, CVE-2013-2447, CVE-2013-2448, CVE-2013-2449, CVE-2013-2450,
CVE-2013-2451, CVE-2013-2452, CVE-2013-2453, CVE-2013-2454, CVE-2013-2455,
CVE-2013-2456, CVE-2013-2457, CVE-2013-2458, CVE-2013-2459, CVE-2013-2460,
CVE-2013-2461, CVE-2013-2462, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465,
CVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471,
CVE-2013-2472, CVE-2013-2473, CVE-2013-3744)
Red Hat would like to thank Tim Brown for reporting CVE-2013-1500, and
US-CERT for reporting CVE-2013-1571. US-CERT acknowledges Oracle as the
original reporter of CVE-2013-1571.
All users of java-1.7.0-oracle are advised to upgrade to these updated
packages, which provide Oracle Java 7 Update 25 and resolve these issues.
All running instances of Oracle Java must be restarted for the update to
take effect.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated java-1.7.0-oracle packages that fix several security issues are now\navailable for Red Hat Enterprise Linux 5 and 6 Supplementary.\n\nThe Red Hat Security Response Team has rated this update as having critical\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Oracle Java SE version 7 includes the Oracle Java Runtime Environment and\nthe Oracle Java Software Development Kit.\n\nThis update fixes several vulnerabilities in the Oracle Java Runtime\nEnvironment and the Oracle Java Software Development Kit. Further\ninformation about these flaws can be found on the Oracle Java SE Critical\nPatch Update Advisory page, listed in the References section.\n(CVE-2013-1500, CVE-2013-1571, CVE-2013-2400, CVE-2013-2407, CVE-2013-2412,\nCVE-2013-2437, CVE-2013-2442, CVE-2013-2443, CVE-2013-2444, CVE-2013-2445,\nCVE-2013-2446, CVE-2013-2447, CVE-2013-2448, CVE-2013-2449, CVE-2013-2450,\nCVE-2013-2451, CVE-2013-2452, CVE-2013-2453, CVE-2013-2454, CVE-2013-2455,\nCVE-2013-2456, CVE-2013-2457, CVE-2013-2458, CVE-2013-2459, CVE-2013-2460,\nCVE-2013-2461, CVE-2013-2462, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465,\nCVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471,\nCVE-2013-2472, CVE-2013-2473, CVE-2013-3744)\n\nRed Hat would like to thank Tim Brown for reporting CVE-2013-1500, and\nUS-CERT for reporting CVE-2013-1571. US-CERT acknowledges Oracle as the\noriginal reporter of CVE-2013-1571.\n\nAll users of java-1.7.0-oracle are advised to upgrade to these updated\npackages, which provide Oracle Java 7 Update 25 and resolve these issues.\nAll running instances of Oracle Java must be restarted for the update to\ntake effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat offerings.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2013:0963",
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
},
{
"category": "external",
"summary": "973474",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474"
},
{
"category": "external",
"summary": "975099",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099"
},
{
"category": "external",
"summary": "975102",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102"
},
{
"category": "external",
"summary": "975107",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107"
},
{
"category": "external",
"summary": "975110",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110"
},
{
"category": "external",
"summary": "975115",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115"
},
{
"category": "external",
"summary": "975118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118"
},
{
"category": "external",
"summary": "975120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120"
},
{
"category": "external",
"summary": "975121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121"
},
{
"category": "external",
"summary": "975122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975122"
},
{
"category": "external",
"summary": "975124",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124"
},
{
"category": "external",
"summary": "975125",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125"
},
{
"category": "external",
"summary": "975126",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126"
},
{
"category": "external",
"summary": "975127",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127"
},
{
"category": "external",
"summary": "975129",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129"
},
{
"category": "external",
"summary": "975130",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975130"
},
{
"category": "external",
"summary": "975131",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131"
},
{
"category": "external",
"summary": "975132",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132"
},
{
"category": "external",
"summary": "975133",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133"
},
{
"category": "external",
"summary": "975134",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134"
},
{
"category": "external",
"summary": "975137",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137"
},
{
"category": "external",
"summary": "975138",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138"
},
{
"category": "external",
"summary": "975139",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139"
},
{
"category": "external",
"summary": "975140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140"
},
{
"category": "external",
"summary": "975141",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141"
},
{
"category": "external",
"summary": "975142",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142"
},
{
"category": "external",
"summary": "975144",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144"
},
{
"category": "external",
"summary": "975145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975145"
},
{
"category": "external",
"summary": "975146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146"
},
{
"category": "external",
"summary": "975148",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148"
},
{
"category": "external",
"summary": "975757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757"
},
{
"category": "external",
"summary": "975761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761"
},
{
"category": "external",
"summary": "975764",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764"
},
{
"category": "external",
"summary": "975769",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975769"
},
{
"category": "external",
"summary": "975770",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770"
},
{
"category": "external",
"summary": "975773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773"
},
{
"category": "external",
"summary": "975774",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975774"
},
{
"category": "external",
"summary": "975775",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975775"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/data/csaf/v2/advisories/2013/rhsa-2013_0963.json"
}
],
"title": "Red Hat Security Advisory: java-1.7.0-oracle security update",
"tracking": {
"current_release_date": "2024-09-13T08:25:41+00:00",
"generator": {
"date": "2024-09-13T08:25:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "3.33.3"
}
},
"id": "RHSA-2013:0963",
"initial_release_date": "2013-06-20T14:42:00+00:00",
"revision_history": [
{
"date": "2013-06-20T14:42:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2013-11-13T11:09:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-09-13T08:25:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras:6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Supplementary"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el5_9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el6_4?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el5_9?arch=i386\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"product": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_id": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-javafx@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"product": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_id": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-plugin@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"product": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_id": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-src@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"product": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_id": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-jdbc@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"product": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_id": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle-devel@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"product": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_id": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/java-1.7.0-oracle@1.7.0.25-1jpp.1.el6_4?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 5)",
"product_id": "5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"relates_to_product_reference": "5Server-Supplementary-5.9.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Desktop Supplementary (v. 6)",
"product_id": "6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Client-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux HPC Node Supplementary (v. 6)",
"product_id": "6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6ComputeNode-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Server Supplementary (v. 6)",
"product_id": "6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Server-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64 as a component of Red Hat Enterprise Linux Workstation Supplementary (v. 6)",
"product_id": "6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
},
"product_reference": "java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"relates_to_product_reference": "6Workstation-Supplementary-6.4.z"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Tim Brown"
]
}
],
"cve": "CVE-2013-1500",
"discovery_date": "2013-01-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975148"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality and integrity via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to weak permissions for shared memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Insecure shared memory permissions (2D, 8001034)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1500"
},
{
"category": "external",
"summary": "RHBZ#975148",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975148"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1500",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1500"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1500"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 3.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: Insecure shared memory permissions (2D, 8001034)"
},
{
"acknowledgments": [
{
"names": [
"US-CERT"
]
}
],
"cve": "CVE-2013-1571",
"discovery_date": "2013-06-11T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "973474"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Javadoc component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect integrity via unknown vectors related to Javadoc. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to frame injection in HTML that is generated by Javadoc.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1571"
},
{
"category": "external",
"summary": "RHBZ#973474",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=973474"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1571",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1571"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1571"
},
{
"category": "external",
"summary": "http://www.kb.cert.org/vuls/id/225657",
"url": "http://www.kb.cert.org/vuls/id/225657"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: Frame injection in generated HTML (Javadoc, 8012375)"
},
{
"cve": "CVE-2013-2400",
"discovery_date": "2013-06-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975774"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-3744.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2400"
},
{
"category": "external",
"summary": "RHBZ#975774",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975774"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2400",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2400"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2400",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2400"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)"
},
{
"cve": "CVE-2013-2407",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975127"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"XML security and the class loader.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2407"
},
{
"category": "external",
"summary": "RHBZ#975127",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975127"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2407",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2407"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2407"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744)"
},
{
"cve": "CVE-2013-2412",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975144"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to insufficient indication of an SSL connection failure by JConsole, related to RMI connection dialog box.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: JConsole SSL support (Serviceability, 8003703)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2412"
},
{
"category": "external",
"summary": "RHBZ#975144",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975144"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2412",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2412"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2412"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: JConsole SSL support (Serviceability, 8003703)"
},
{
"cve": "CVE-2013-2437",
"discovery_date": "2013-06-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975773"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2437"
},
{
"category": "external",
"summary": "RHBZ#975773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975773"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2437",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2437"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2437"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)"
},
{
"cve": "CVE-2013-2442",
"discovery_date": "2013-06-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975770"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2466 and CVE-2013-2468.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2442"
},
{
"category": "external",
"summary": "RHBZ#975770",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975770"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2442",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2442"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2442"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)"
},
{
"cve": "CVE-2013-2443",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975137"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2452 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect \"checking order\" within the AccessControlContext class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2443"
},
{
"category": "external",
"summary": "RHBZ#975137",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975137"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2443",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2443"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2443"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: AccessControlContext check order issue (Libraries, 8001330)"
},
{
"cve": "CVE-2013-2444",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975131"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier; JavaFX 2.2.21 and earlier; and OpenJDK 7 allows remote attackers to affect availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not \"properly manage and restrict certain resources related to the processing of fonts,\" possibly involving temporary files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Resource denial of service (AWT, 8001038)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2444"
},
{
"category": "external",
"summary": "RHBZ#975131",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975131"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2444",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2444"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2444"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: Resource denial of service (AWT, 8001038)"
},
{
"cve": "CVE-2013-2445",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975124"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Hotspot. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"handling of memory allocation errors.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2445"
},
{
"category": "external",
"summary": "RHBZ#975124",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975124"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2445",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2445"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2445"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805)"
},
{
"cve": "CVE-2013-2446",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975132"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly enforce access restrictions for CORBA output streams.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: output stream access restrictions (CORBA, 8000642)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2446"
},
{
"category": "external",
"summary": "RHBZ#975132",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975132"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2446",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2446"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2446"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: output stream access restrictions (CORBA, 8000642)"
},
{
"cve": "CVE-2013-2447",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975140"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to obtain a socket\u0027s local address via vectors involving inconsistencies between Socket.getLocalAddress and InetAddress.getLocalHost.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Prevent revealing the local address (Networking, 8001318)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2447"
},
{
"category": "external",
"summary": "RHBZ#975140",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975140"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2447",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2447"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2447"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: Prevent revealing the local address (Networking, 8001318)"
},
{
"cve": "CVE-2013-2448",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975125"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to insufficient \"access restrictions\" and \"robustness of sound classes.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Better access restrictions (Sound, 8006328)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2448"
},
{
"category": "external",
"summary": "RHBZ#975125",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975125"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2448",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2448"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2448"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: Better access restrictions (Sound, 8006328)"
},
{
"cve": "CVE-2013-2449",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975145"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to GnomeFileTypeDetector and a missing check for read permissions for a path.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2449"
},
{
"category": "external",
"summary": "RHBZ#975145",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975145"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2449",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2449"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288)"
},
{
"cve": "CVE-2013-2450",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975141"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect availability via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper handling of circular references in ObjectStreamClass.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2450"
},
{
"category": "external",
"summary": "RHBZ#975141",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975141"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2450",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2450"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638)"
},
{
"cve": "CVE-2013-2451",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975146"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper enforcement of exclusive port binds when running on Windows, which allows attackers to bind to ports that are already in use.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: exclusive port binding (Networking, 7170730)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2451"
},
{
"category": "external",
"summary": "RHBZ#975146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2451",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2451"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2451"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 3.7,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:L/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "OpenJDK: exclusive port binding (Networking, 7170730)"
},
{
"cve": "CVE-2013-2452",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975138"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2455. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to \"network address handling in virtual machine identifiers\" and the lack of \"unique and unpredictable IDs\" in the java.rmi.dgc.VMID class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Unique VMIDs (Libraries, 8001033)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2452"
},
{
"category": "external",
"summary": "RHBZ#975138",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975138"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2452",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2452"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2452"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: Unique VMIDs (Libraries, 8001033)"
},
{
"cve": "CVE-2013-2453",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975134"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to a missing check for \"package access\" by the MBeanServer Introspector.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2453"
},
{
"category": "external",
"summary": "RHBZ#975134",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975134"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2453",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2453"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2453"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: MBeanServer Introspector package access (JMX, 8008124)"
},
{
"cve": "CVE-2013-2454",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975129"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via vectors related to JDBC. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue does not properly restrict access to certain class packages in the SerialJavaObject class, which allows remote attackers to bypass the Java sandbox.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2454"
},
{
"category": "external",
"summary": "RHBZ#975129",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975129"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2454",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2454"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2454"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: SerialJavaObject package restriction (JDBC, 8009554)"
},
{
"cve": "CVE-2013-2455",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975139"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different vulnerability than CVE-2013-2443 and CVE-2013-2452. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to incorrect access checks by the (1) getEnclosingClass, (2) getEnclosingMethod, and (3) getEnclosingConstructor methods.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: getEnclosing* checks (Libraries, 8007812)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2455"
},
{
"category": "external",
"summary": "RHBZ#975139",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975139"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2455",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2455"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2455"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: getEnclosing* checks (Libraries, 8007812)"
},
{
"cve": "CVE-2013-2456",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975142"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Serialization. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper access checks for subclasses in the ObjectOutputStream class.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2456"
},
{
"category": "external",
"summary": "RHBZ#975142",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975142"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2456",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2456"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2456"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: ObjectOutputStream access checks (Serialization, 8008132)"
},
{
"cve": "CVE-2013-2457",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975133"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to JMX. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is due to an incorrect implementation of \"certain class checks\" that allows remote attackers to bypass intended class restrictions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Proper class checking (JMX, 8008120)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2457"
},
{
"category": "external",
"summary": "RHBZ#975133",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975133"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2457",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2457"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2457"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: Proper class checking (JMX, 8008120)"
},
{
"cve": "CVE-2013-2458",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975130"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via \"an error related to method handles.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Method handles (Libraries, 8009424)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2458"
},
{
"category": "external",
"summary": "RHBZ#975130",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975130"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2458",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2458"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2458",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2458"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "OpenJDK: Method handles (Libraries, 8009424)"
},
{
"cve": "CVE-2013-2459",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975121"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to AWT. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"integer overflow checks.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2459"
},
{
"category": "external",
"summary": "RHBZ#975121",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975121"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2459",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2459"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2459"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: Various AWT integer overflow checks (AWT, 8009071)"
},
{
"cve": "CVE-2013-2460",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975122"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serviceability. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"insufficient access checks\" in the tracing component.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: tracing insufficient access checks (Serviceability, 8010209)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2460"
},
{
"category": "external",
"summary": "RHBZ#975122",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975122"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2460",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2460"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2460",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2460"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: tracing insufficient access checks (Serviceability, 8010209)"
},
{
"cve": "CVE-2013-2461",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975126"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier; the Oracle JRockit component in Oracle Fusion Middleware R27.7.5 and earlier and R28.2.7 and earlier; and OpenJDK 7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries. NOTE: the previous information is from the June and July 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass verification of XML signatures via vectors related to a \"Missing check for [a] valid DOMCanonicalizationMethod canonicalization algorithm.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2461"
},
{
"category": "external",
"summary": "RHBZ#975126",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975126"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2461",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2461"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2461"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281)"
},
{
"cve": "CVE-2013-2462",
"discovery_date": "2013-06-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975769"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2462"
},
{
"category": "external",
"summary": "RHBZ#975769",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975769"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2462",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2462"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2462",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2462"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)"
},
{
"cve": "CVE-2013-2463",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975115"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image attribute verification\" in 2D.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Incorrect image attribute verification (2D, 8012438)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2463"
},
{
"category": "external",
"summary": "RHBZ#975115",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975115"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2463",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2463"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2463"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: Incorrect image attribute verification (2D, 8012438)"
},
{
"cve": "CVE-2013-2464",
"discovery_date": "2013-06-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975757"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-2463, CVE-2013-2465, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, and CVE-2013-2473.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u25 (2D)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2464"
},
{
"category": "external",
"summary": "RHBZ#975757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975757"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2464",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2464"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2464"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u25 (2D)"
},
{
"cve": "CVE-2013-2465",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975118"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image channel verification\" in 2D.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Incorrect image channel verification (2D, 8012597)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2465"
},
{
"category": "external",
"summary": "RHBZ#975118",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975118"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2465",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2465"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2465"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2022-03-28T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: Incorrect image channel verification (2D, 8012597)"
},
{
"cve": "CVE-2013-2466",
"discovery_date": "2013-06-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975764"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2468.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2466"
},
{
"category": "external",
"summary": "RHBZ#975764",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975764"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2466",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2466"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2466"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)"
},
{
"cve": "CVE-2013-2468",
"discovery_date": "2013-06-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975761"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2442 and CVE-2013-2466.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2468"
},
{
"category": "external",
"summary": "RHBZ#975761",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975761"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2468",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2468"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2468"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)"
},
{
"cve": "CVE-2013-2469",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975120"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect image layout verification\" in 2D.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Incorrect image layout verification (2D, 8012601)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2469"
},
{
"category": "external",
"summary": "RHBZ#975120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975120"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2469",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2469"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2469"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: Incorrect image layout verification (2D, 8012601)"
},
{
"cve": "CVE-2013-2470",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975099"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"ImagingLib byte lookup processing.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2470"
},
{
"category": "external",
"summary": "RHBZ#975099",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975099"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2470",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2470"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2470"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: ImagingLib byte lookup processing (2D, 8011243)"
},
{
"cve": "CVE-2013-2471",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975102"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect IntegerComponentRaster size checks.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2471"
},
{
"category": "external",
"summary": "RHBZ#975102",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975102"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2471",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2471"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2471"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248)"
},
{
"cve": "CVE-2013-2472",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975107"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ShortBandedRaster size checks\" in 2D.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2472"
},
{
"category": "external",
"summary": "RHBZ#975107",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975107"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2472",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2472"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2472"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253)"
},
{
"cve": "CVE-2013-2473",
"discovery_date": "2013-06-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975110"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to \"Incorrect ByteBandedRaster size checks\" in 2D.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-2473"
},
{
"category": "external",
"summary": "RHBZ#975110",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975110"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-2473",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-2473"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2473"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257)"
},
{
"cve": "CVE-2013-3744",
"discovery_date": "2013-06-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "975775"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier allows remote attackers to affect integrity via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2400.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-3744"
},
{
"category": "external",
"summary": "RHBZ#975775",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=975775"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-3744",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-3744"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-3744",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-3744"
},
{
"category": "external",
"summary": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html",
"url": "http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html"
}
],
"release_date": "2013-06-18T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/knowledge/articles/11258",
"product_ids": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2013:0963"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"products": [
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.i386",
"5Server-Supplementary-5.9.Z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el5_9.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Client-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6ComputeNode-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Server-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-devel-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-javafx-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-jdbc-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-plugin-1:1.7.0.25-1jpp.1.el6_4.x86_64",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.i686",
"6Workstation-Supplementary-6.4.z:java-1.7.0-oracle-src-1:1.7.0.25-1jpp.1.el6_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "JDK: unspecified vulnerability fixed in 7u25 (Deployment)"
}
]
}
Loading...