ID CVE-2014-6558
Summary Unspecified vulnerability in Oracle Java SE 5.0u71, 6u81, 7u67, and 8u20; Java SE Embedded 7u60; and JRockit R27.8.3 and JRockit R28.3.3 allows remote attackers to affect integrity via unknown vectors related to Security.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:jrockit:r28.3.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r28.3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jrockit:r27.8.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:jrockit:r27.8.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.5.0:update_71:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.5.0:update_71:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.8.0:update_20:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.8.0:update_20:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.5.0:update_71:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.5.0:update_71:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.7.0:update_67:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.7.0:update_67:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.6.0:update_81:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.6.0:update_81:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.7.0:update60:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.7.0:update60:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jdk:1.6.0:update81:*:*:*:*:*:*
    cpe:2.3:a:oracle:jdk:1.6.0:update81:*:*:*:*:*:*
  • cpe:2.3:a:oracle:jre:1.7.0:update60:*:*:*:*:*:*
    cpe:2.3:a:oracle:jre:1.7.0:update60:*:*:*:*:*:*
CVSS
Base: 2.6 (as of 13-05-2022 - 14:57)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:H/Au:N/C:N/I:P/A:N
redhat via4
advisories
  • bugzilla
    id 1151517
    title CVE-2014-6511 ICU: Layout Engine ContextualSubstitution missing boundary checks (JDK 2D, 8041540)
    oval
    OR
    • comment Red Hat Enterprise Linux must be installed
      oval oval:com.redhat.rhba:tst:20070304026
    • AND
      • comment Red Hat Enterprise Linux 7 is installed
        oval oval:com.redhat.rhba:tst:20150364027
      • OR
        • AND
          • comment java-1.7.0-openjdk is earlier than 1:1.7.0.71-2.5.3.1.el7_0
            oval oval:com.redhat.rhsa:tst:20141620001
          • comment java-1.7.0-openjdk is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009002
        • AND
          • comment java-1.7.0-openjdk-accessibility is earlier than 1:1.7.0.71-2.5.3.1.el7_0
            oval oval:com.redhat.rhsa:tst:20141620003
          • comment java-1.7.0-openjdk-accessibility is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140675004
        • AND
          • comment java-1.7.0-openjdk-demo is earlier than 1:1.7.0.71-2.5.3.1.el7_0
            oval oval:com.redhat.rhsa:tst:20141620005
          • comment java-1.7.0-openjdk-demo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009004
        • AND
          • comment java-1.7.0-openjdk-devel is earlier than 1:1.7.0.71-2.5.3.1.el7_0
            oval oval:com.redhat.rhsa:tst:20141620007
          • comment java-1.7.0-openjdk-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009006
        • AND
          • comment java-1.7.0-openjdk-headless is earlier than 1:1.7.0.71-2.5.3.1.el7_0
            oval oval:com.redhat.rhsa:tst:20141620009
          • comment java-1.7.0-openjdk-headless is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140675010
        • AND
          • comment java-1.7.0-openjdk-javadoc is earlier than 1:1.7.0.71-2.5.3.1.el7_0
            oval oval:com.redhat.rhsa:tst:20141620011
          • comment java-1.7.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009008
        • AND
          • comment java-1.7.0-openjdk-src is earlier than 1:1.7.0.71-2.5.3.1.el7_0
            oval oval:com.redhat.rhsa:tst:20141620013
          • comment java-1.7.0-openjdk-src is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009010
    • AND
      • comment Red Hat Enterprise Linux 6 is installed
        oval oval:com.redhat.rhba:tst:20111656003
      • OR
        • AND
          • comment java-1.7.0-openjdk is earlier than 1:1.7.0.71-2.5.3.1.el6
            oval oval:com.redhat.rhsa:tst:20141620016
          • comment java-1.7.0-openjdk is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009002
        • AND
          • comment java-1.7.0-openjdk-demo is earlier than 1:1.7.0.71-2.5.3.1.el6
            oval oval:com.redhat.rhsa:tst:20141620017
          • comment java-1.7.0-openjdk-demo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009004
        • AND
          • comment java-1.7.0-openjdk-devel is earlier than 1:1.7.0.71-2.5.3.1.el6
            oval oval:com.redhat.rhsa:tst:20141620018
          • comment java-1.7.0-openjdk-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009006
        • AND
          • comment java-1.7.0-openjdk-javadoc is earlier than 1:1.7.0.71-2.5.3.1.el6
            oval oval:com.redhat.rhsa:tst:20141620019
          • comment java-1.7.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009008
        • AND
          • comment java-1.7.0-openjdk-src is earlier than 1:1.7.0.71-2.5.3.1.el6
            oval oval:com.redhat.rhsa:tst:20141620020
          • comment java-1.7.0-openjdk-src is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20121009010
    rhsa
    id RHSA-2014:1620
    released 2014-10-15
    severity Important
    title RHSA-2014:1620: java-1.7.0-openjdk security and bug fix update (Important)
  • bugzilla
    id 1151517
    title CVE-2014-6511 ICU: Layout Engine ContextualSubstitution missing boundary checks (JDK 2D, 8041540)
    oval
    OR
    • comment Red Hat Enterprise Linux must be installed
      oval oval:com.redhat.rhba:tst:20070304026
    • AND
      • comment Red Hat Enterprise Linux 5 is installed
        oval oval:com.redhat.rhba:tst:20070331005
      • OR
        • AND
          • comment java-1.7.0-openjdk is earlier than 1:1.7.0.71-2.5.3.1.el5_11
            oval oval:com.redhat.rhsa:tst:20141633001
          • comment java-1.7.0-openjdk is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20130165013
        • AND
          • comment java-1.7.0-openjdk-demo is earlier than 1:1.7.0.71-2.5.3.1.el5_11
            oval oval:com.redhat.rhsa:tst:20141633003
          • comment java-1.7.0-openjdk-demo is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20130165015
        • AND
          • comment java-1.7.0-openjdk-devel is earlier than 1:1.7.0.71-2.5.3.1.el5_11
            oval oval:com.redhat.rhsa:tst:20141633005
          • comment java-1.7.0-openjdk-devel is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20130165017
        • AND
          • comment java-1.7.0-openjdk-javadoc is earlier than 1:1.7.0.71-2.5.3.1.el5_11
            oval oval:com.redhat.rhsa:tst:20141633007
          • comment java-1.7.0-openjdk-javadoc is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20130165019
        • AND
          • comment java-1.7.0-openjdk-src is earlier than 1:1.7.0.71-2.5.3.1.el5_11
            oval oval:com.redhat.rhsa:tst:20141633009
          • comment java-1.7.0-openjdk-src is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20130165021
    rhsa
    id RHSA-2014:1633
    released 2014-10-14
    severity Important
    title RHSA-2014:1633: java-1.7.0-openjdk security and bug fix update (Important)
  • bugzilla
    id 1151517
    title CVE-2014-6511 ICU: Layout Engine ContextualSubstitution missing boundary checks (JDK 2D, 8041540)
    oval
    OR
    • comment Red Hat Enterprise Linux must be installed
      oval oval:com.redhat.rhba:tst:20070304026
    • AND
      • comment Red Hat Enterprise Linux 5 is installed
        oval oval:com.redhat.rhba:tst:20070331005
      • OR
        • AND
          • comment java-1.6.0-openjdk is earlier than 1:1.6.0.33-1.13.5.0.el5_11
            oval oval:com.redhat.rhsa:tst:20141634001
          • comment java-1.6.0-openjdk is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20090377002
        • AND
          • comment java-1.6.0-openjdk-demo is earlier than 1:1.6.0.33-1.13.5.0.el5_11
            oval oval:com.redhat.rhsa:tst:20141634003
          • comment java-1.6.0-openjdk-demo is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20090377004
        • AND
          • comment java-1.6.0-openjdk-devel is earlier than 1:1.6.0.33-1.13.5.0.el5_11
            oval oval:com.redhat.rhsa:tst:20141634005
          • comment java-1.6.0-openjdk-devel is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20090377006
        • AND
          • comment java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.33-1.13.5.0.el5_11
            oval oval:com.redhat.rhsa:tst:20141634007
          • comment java-1.6.0-openjdk-javadoc is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20090377008
        • AND
          • comment java-1.6.0-openjdk-src is earlier than 1:1.6.0.33-1.13.5.0.el5_11
            oval oval:com.redhat.rhsa:tst:20141634009
          • comment java-1.6.0-openjdk-src is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20090377010
    • AND
      • comment Red Hat Enterprise Linux 7 is installed
        oval oval:com.redhat.rhba:tst:20150364027
      • OR
        • AND
          • comment java-1.6.0-openjdk is earlier than 1:1.6.0.33-1.13.5.0.el7_0
            oval oval:com.redhat.rhsa:tst:20141634012
          • comment java-1.6.0-openjdk is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20100865002
        • AND
          • comment java-1.6.0-openjdk-demo is earlier than 1:1.6.0.33-1.13.5.0.el7_0
            oval oval:com.redhat.rhsa:tst:20141634014
          • comment java-1.6.0-openjdk-demo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20100865004
        • AND
          • comment java-1.6.0-openjdk-devel is earlier than 1:1.6.0.33-1.13.5.0.el7_0
            oval oval:com.redhat.rhsa:tst:20141634016
          • comment java-1.6.0-openjdk-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20100865006
        • AND
          • comment java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.33-1.13.5.0.el7_0
            oval oval:com.redhat.rhsa:tst:20141634018
          • comment java-1.6.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20100865008
        • AND
          • comment java-1.6.0-openjdk-src is earlier than 1:1.6.0.33-1.13.5.0.el7_0
            oval oval:com.redhat.rhsa:tst:20141634020
          • comment java-1.6.0-openjdk-src is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20100865010
    • AND
      • comment Red Hat Enterprise Linux 6 is installed
        oval oval:com.redhat.rhba:tst:20111656003
      • OR
        • AND
          • comment java-1.6.0-openjdk is earlier than 1:1.6.0.33-1.13.5.0.el6_6
            oval oval:com.redhat.rhsa:tst:20141634023
          • comment java-1.6.0-openjdk is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20100865002
        • AND
          • comment java-1.6.0-openjdk-demo is earlier than 1:1.6.0.33-1.13.5.0.el6_6
            oval oval:com.redhat.rhsa:tst:20141634024
          • comment java-1.6.0-openjdk-demo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20100865004
        • AND
          • comment java-1.6.0-openjdk-devel is earlier than 1:1.6.0.33-1.13.5.0.el6_6
            oval oval:com.redhat.rhsa:tst:20141634025
          • comment java-1.6.0-openjdk-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20100865006
        • AND
          • comment java-1.6.0-openjdk-javadoc is earlier than 1:1.6.0.33-1.13.5.0.el6_6
            oval oval:com.redhat.rhsa:tst:20141634026
          • comment java-1.6.0-openjdk-javadoc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20100865008
        • AND
          • comment java-1.6.0-openjdk-src is earlier than 1:1.6.0.33-1.13.5.0.el6_6
            oval oval:com.redhat.rhsa:tst:20141634027
          • comment java-1.6.0-openjdk-src is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20100865010
    rhsa
    id RHSA-2014:1634
    released 2014-10-15
    severity Important
    title RHSA-2014:1634: java-1.6.0-openjdk security and bug fix update (Important)
  • bugzilla
    id 1152767
    title CVE-2014-6527 Oracle JDK: unspecified vulnerability fixed in 7u71 and 8u25 (Deployment)
    oval
    OR
    • comment Red Hat Enterprise Linux must be installed
      oval oval:com.redhat.rhba:tst:20070304026
    • AND
      • comment Red Hat Enterprise Linux 5 is installed
        oval oval:com.redhat.rhba:tst:20070331005
      • OR
        • AND
          • comment java-1.7.0-oracle is earlier than 1:1.7.0.72-1jpp.4.el5_11
            oval oval:com.redhat.rhsa:tst:20141657001
          • comment java-1.7.0-oracle is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140413002
        • AND
          • comment java-1.7.0-oracle-devel is earlier than 1:1.7.0.72-1jpp.4.el5_11
            oval oval:com.redhat.rhsa:tst:20141657003
          • comment java-1.7.0-oracle-devel is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140413004
        • AND
          • comment java-1.7.0-oracle-javafx is earlier than 1:1.7.0.72-1jpp.4.el5_11
            oval oval:com.redhat.rhsa:tst:20141657005
          • comment java-1.7.0-oracle-javafx is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140413006
        • AND
          • comment java-1.7.0-oracle-jdbc is earlier than 1:1.7.0.72-1jpp.4.el5_11
            oval oval:com.redhat.rhsa:tst:20141657007
          • comment java-1.7.0-oracle-jdbc is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140413008
        • AND
          • comment java-1.7.0-oracle-plugin is earlier than 1:1.7.0.72-1jpp.4.el5_11
            oval oval:com.redhat.rhsa:tst:20141657009
          • comment java-1.7.0-oracle-plugin is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140413010
        • AND
          • comment java-1.7.0-oracle-src is earlier than 1:1.7.0.72-1jpp.4.el5_11
            oval oval:com.redhat.rhsa:tst:20141657011
          • comment java-1.7.0-oracle-src is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140413012
    • AND
      • comment Red Hat Enterprise Linux 7 is installed
        oval oval:com.redhat.rhba:tst:20150364027
      • OR
        • AND
          • comment java-1.7.0-oracle is earlier than 1:1.7.0.72-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141657014
          • comment java-1.7.0-oracle is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413015
        • AND
          • comment java-1.7.0-oracle-devel is earlier than 1:1.7.0.72-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141657016
          • comment java-1.7.0-oracle-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413017
        • AND
          • comment java-1.7.0-oracle-javafx is earlier than 1:1.7.0.72-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141657018
          • comment java-1.7.0-oracle-javafx is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413019
        • AND
          • comment java-1.7.0-oracle-jdbc is earlier than 1:1.7.0.72-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141657020
          • comment java-1.7.0-oracle-jdbc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413021
        • AND
          • comment java-1.7.0-oracle-plugin is earlier than 1:1.7.0.72-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141657022
          • comment java-1.7.0-oracle-plugin is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413023
        • AND
          • comment java-1.7.0-oracle-src is earlier than 1:1.7.0.72-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141657024
          • comment java-1.7.0-oracle-src is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413025
    • AND
      • comment Red Hat Enterprise Linux 6 is installed
        oval oval:com.redhat.rhba:tst:20111656003
      • OR
        • AND
          • comment java-1.7.0-oracle is earlier than 1:1.7.0.72-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141657027
          • comment java-1.7.0-oracle is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413015
        • AND
          • comment java-1.7.0-oracle-devel is earlier than 1:1.7.0.72-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141657028
          • comment java-1.7.0-oracle-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413017
        • AND
          • comment java-1.7.0-oracle-javafx is earlier than 1:1.7.0.72-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141657029
          • comment java-1.7.0-oracle-javafx is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413019
        • AND
          • comment java-1.7.0-oracle-jdbc is earlier than 1:1.7.0.72-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141657030
          • comment java-1.7.0-oracle-jdbc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413021
        • AND
          • comment java-1.7.0-oracle-plugin is earlier than 1:1.7.0.72-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141657031
          • comment java-1.7.0-oracle-plugin is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413023
        • AND
          • comment java-1.7.0-oracle-src is earlier than 1:1.7.0.72-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141657032
          • comment java-1.7.0-oracle-src is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140413025
    rhsa
    id RHSA-2014:1657
    released 2014-10-16
    severity Critical
    title RHSA-2014:1657: java-1.7.0-oracle security update (Critical)
  • bugzilla
    id 1152766
    title CVE-2014-6515 Oracle JDK: unspecified vulnerability fixed in 6u85, 7u71 and 8u25 (Deployment)
    oval
    OR
    • comment Red Hat Enterprise Linux must be installed
      oval oval:com.redhat.rhba:tst:20070304026
    • AND
      • comment Red Hat Enterprise Linux 5 is installed
        oval oval:com.redhat.rhba:tst:20070331005
      • OR
        • AND
          • comment java-1.6.0-sun is earlier than 1:1.6.0.85-1jpp.3.el5_11
            oval oval:com.redhat.rhsa:tst:20141658001
          • comment java-1.6.0-sun is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140414002
        • AND
          • comment java-1.6.0-sun-demo is earlier than 1:1.6.0.85-1jpp.3.el5_11
            oval oval:com.redhat.rhsa:tst:20141658003
          • comment java-1.6.0-sun-demo is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140414004
        • AND
          • comment java-1.6.0-sun-devel is earlier than 1:1.6.0.85-1jpp.3.el5_11
            oval oval:com.redhat.rhsa:tst:20141658005
          • comment java-1.6.0-sun-devel is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140414006
        • AND
          • comment java-1.6.0-sun-jdbc is earlier than 1:1.6.0.85-1jpp.3.el5_11
            oval oval:com.redhat.rhsa:tst:20141658007
          • comment java-1.6.0-sun-jdbc is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140414008
        • AND
          • comment java-1.6.0-sun-plugin is earlier than 1:1.6.0.85-1jpp.3.el5_11
            oval oval:com.redhat.rhsa:tst:20141658009
          • comment java-1.6.0-sun-plugin is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140414010
        • AND
          • comment java-1.6.0-sun-src is earlier than 1:1.6.0.85-1jpp.3.el5_11
            oval oval:com.redhat.rhsa:tst:20141658011
          • comment java-1.6.0-sun-src is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20140414012
    • AND
      • comment Red Hat Enterprise Linux 7 is installed
        oval oval:com.redhat.rhba:tst:20150364027
      • OR
        • AND
          • comment java-1.6.0-sun is earlier than 1:1.6.0.85-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141658014
          • comment java-1.6.0-sun is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414015
        • AND
          • comment java-1.6.0-sun-demo is earlier than 1:1.6.0.85-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141658016
          • comment java-1.6.0-sun-demo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414017
        • AND
          • comment java-1.6.0-sun-devel is earlier than 1:1.6.0.85-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141658018
          • comment java-1.6.0-sun-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414019
        • AND
          • comment java-1.6.0-sun-jdbc is earlier than 1:1.6.0.85-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141658020
          • comment java-1.6.0-sun-jdbc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414021
        • AND
          • comment java-1.6.0-sun-plugin is earlier than 1:1.6.0.85-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141658022
          • comment java-1.6.0-sun-plugin is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414023
        • AND
          • comment java-1.6.0-sun-src is earlier than 1:1.6.0.85-1jpp.2.el7
            oval oval:com.redhat.rhsa:tst:20141658024
          • comment java-1.6.0-sun-src is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414025
    • AND
      • comment Red Hat Enterprise Linux 6 is installed
        oval oval:com.redhat.rhba:tst:20111656003
      • OR
        • AND
          • comment java-1.6.0-sun is earlier than 1:1.6.0.85-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141658027
          • comment java-1.6.0-sun is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414015
        • AND
          • comment java-1.6.0-sun-demo is earlier than 1:1.6.0.85-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141658028
          • comment java-1.6.0-sun-demo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414017
        • AND
          • comment java-1.6.0-sun-devel is earlier than 1:1.6.0.85-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141658029
          • comment java-1.6.0-sun-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414019
        • AND
          • comment java-1.6.0-sun-jdbc is earlier than 1:1.6.0.85-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141658030
          • comment java-1.6.0-sun-jdbc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414021
        • AND
          • comment java-1.6.0-sun-plugin is earlier than 1:1.6.0.85-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141658031
          • comment java-1.6.0-sun-plugin is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414023
        • AND
          • comment java-1.6.0-sun-src is earlier than 1:1.6.0.85-1jpp.2.el6
            oval oval:com.redhat.rhsa:tst:20141658032
          • comment java-1.6.0-sun-src is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20140414025
    rhsa
    id RHSA-2014:1658
    released 2014-10-16
    severity Important
    title RHSA-2014:1658: java-1.6.0-sun security update (Important)
  • rhsa
    id RHSA-2014:1636
  • rhsa
    id RHSA-2014:1876
  • rhsa
    id RHSA-2014:1877
  • rhsa
    id RHSA-2014:1880
  • rhsa
    id RHSA-2014:1881
  • rhsa
    id RHSA-2014:1882
  • rhsa
    id RHSA-2015:0264
rpms
  • java-1.7.0-openjdk-1:1.7.0.71-2.5.3.1.el6
  • java-1.7.0-openjdk-1:1.7.0.71-2.5.3.1.el7_0
  • java-1.7.0-openjdk-accessibility-1:1.7.0.71-2.5.3.1.el7_0
  • java-1.7.0-openjdk-debuginfo-1:1.7.0.71-2.5.3.1.el6
  • java-1.7.0-openjdk-debuginfo-1:1.7.0.71-2.5.3.1.el7_0
  • java-1.7.0-openjdk-demo-1:1.7.0.71-2.5.3.1.el6
  • java-1.7.0-openjdk-demo-1:1.7.0.71-2.5.3.1.el7_0
  • java-1.7.0-openjdk-devel-1:1.7.0.71-2.5.3.1.el6
  • java-1.7.0-openjdk-devel-1:1.7.0.71-2.5.3.1.el7_0
  • java-1.7.0-openjdk-headless-1:1.7.0.71-2.5.3.1.el7_0
  • java-1.7.0-openjdk-javadoc-1:1.7.0.71-2.5.3.1.el6
  • java-1.7.0-openjdk-javadoc-1:1.7.0.71-2.5.3.1.el7_0
  • java-1.7.0-openjdk-src-1:1.7.0.71-2.5.3.1.el6
  • java-1.7.0-openjdk-src-1:1.7.0.71-2.5.3.1.el7_0
  • java-1.7.0-openjdk-1:1.7.0.71-2.5.3.1.el5_11
  • java-1.7.0-openjdk-debuginfo-1:1.7.0.71-2.5.3.1.el5_11
  • java-1.7.0-openjdk-demo-1:1.7.0.71-2.5.3.1.el5_11
  • java-1.7.0-openjdk-devel-1:1.7.0.71-2.5.3.1.el5_11
  • java-1.7.0-openjdk-javadoc-1:1.7.0.71-2.5.3.1.el5_11
  • java-1.7.0-openjdk-src-1:1.7.0.71-2.5.3.1.el5_11
  • java-1.6.0-openjdk-1:1.6.0.33-1.13.5.0.el5_11
  • java-1.6.0-openjdk-1:1.6.0.33-1.13.5.0.el6_6
  • java-1.6.0-openjdk-1:1.6.0.33-1.13.5.0.el7_0
  • java-1.6.0-openjdk-debuginfo-1:1.6.0.33-1.13.5.0.el5_11
  • java-1.6.0-openjdk-debuginfo-1:1.6.0.33-1.13.5.0.el6_6
  • java-1.6.0-openjdk-debuginfo-1:1.6.0.33-1.13.5.0.el7_0
  • java-1.6.0-openjdk-demo-1:1.6.0.33-1.13.5.0.el5_11
  • java-1.6.0-openjdk-demo-1:1.6.0.33-1.13.5.0.el6_6
  • java-1.6.0-openjdk-demo-1:1.6.0.33-1.13.5.0.el7_0
  • java-1.6.0-openjdk-devel-1:1.6.0.33-1.13.5.0.el5_11
  • java-1.6.0-openjdk-devel-1:1.6.0.33-1.13.5.0.el6_6
  • java-1.6.0-openjdk-devel-1:1.6.0.33-1.13.5.0.el7_0
  • java-1.6.0-openjdk-javadoc-1:1.6.0.33-1.13.5.0.el5_11
  • java-1.6.0-openjdk-javadoc-1:1.6.0.33-1.13.5.0.el6_6
  • java-1.6.0-openjdk-javadoc-1:1.6.0.33-1.13.5.0.el7_0
  • java-1.6.0-openjdk-src-1:1.6.0.33-1.13.5.0.el5_11
  • java-1.6.0-openjdk-src-1:1.6.0.33-1.13.5.0.el6_6
  • java-1.6.0-openjdk-src-1:1.6.0.33-1.13.5.0.el7_0
  • java-1.8.0-openjdk-0:1.8.0.25-1.b17.el6
  • java-1.8.0-openjdk-debuginfo-0:1.8.0.25-1.b17.el6
  • java-1.8.0-openjdk-demo-0:1.8.0.25-1.b17.el6
  • java-1.8.0-openjdk-devel-0:1.8.0.25-1.b17.el6
  • java-1.8.0-openjdk-headless-0:1.8.0.25-1.b17.el6
  • java-1.8.0-openjdk-javadoc-0:1.8.0.25-1.b17.el6
  • java-1.8.0-openjdk-src-0:1.8.0.25-1.b17.el6
  • java-1.7.0-oracle-1:1.7.0.72-1jpp.2.el6
  • java-1.7.0-oracle-1:1.7.0.72-1jpp.2.el7
  • java-1.7.0-oracle-1:1.7.0.72-1jpp.4.el5_11
  • java-1.7.0-oracle-devel-1:1.7.0.72-1jpp.2.el6
  • java-1.7.0-oracle-devel-1:1.7.0.72-1jpp.2.el7
  • java-1.7.0-oracle-devel-1:1.7.0.72-1jpp.4.el5_11
  • java-1.7.0-oracle-javafx-1:1.7.0.72-1jpp.2.el6
  • java-1.7.0-oracle-javafx-1:1.7.0.72-1jpp.2.el7
  • java-1.7.0-oracle-javafx-1:1.7.0.72-1jpp.4.el5_11
  • java-1.7.0-oracle-jdbc-1:1.7.0.72-1jpp.2.el6
  • java-1.7.0-oracle-jdbc-1:1.7.0.72-1jpp.2.el7
  • java-1.7.0-oracle-jdbc-1:1.7.0.72-1jpp.4.el5_11
  • java-1.7.0-oracle-plugin-1:1.7.0.72-1jpp.2.el6
  • java-1.7.0-oracle-plugin-1:1.7.0.72-1jpp.2.el7
  • java-1.7.0-oracle-plugin-1:1.7.0.72-1jpp.4.el5_11
  • java-1.7.0-oracle-src-1:1.7.0.72-1jpp.2.el6
  • java-1.7.0-oracle-src-1:1.7.0.72-1jpp.2.el7
  • java-1.7.0-oracle-src-1:1.7.0.72-1jpp.4.el5_11
  • java-1.6.0-sun-1:1.6.0.85-1jpp.2.el6
  • java-1.6.0-sun-1:1.6.0.85-1jpp.2.el7
  • java-1.6.0-sun-1:1.6.0.85-1jpp.3.el5_11
  • java-1.6.0-sun-demo-1:1.6.0.85-1jpp.2.el6
  • java-1.6.0-sun-demo-1:1.6.0.85-1jpp.2.el7
  • java-1.6.0-sun-demo-1:1.6.0.85-1jpp.3.el5_11
  • java-1.6.0-sun-devel-1:1.6.0.85-1jpp.2.el6
  • java-1.6.0-sun-devel-1:1.6.0.85-1jpp.2.el7
  • java-1.6.0-sun-devel-1:1.6.0.85-1jpp.3.el5_11
  • java-1.6.0-sun-jdbc-1:1.6.0.85-1jpp.2.el6
  • java-1.6.0-sun-jdbc-1:1.6.0.85-1jpp.2.el7
  • java-1.6.0-sun-jdbc-1:1.6.0.85-1jpp.3.el5_11
  • java-1.6.0-sun-plugin-1:1.6.0.85-1jpp.2.el6
  • java-1.6.0-sun-plugin-1:1.6.0.85-1jpp.2.el7
  • java-1.6.0-sun-plugin-1:1.6.0.85-1jpp.3.el5_11
  • java-1.6.0-sun-src-1:1.6.0.85-1jpp.2.el6
  • java-1.6.0-sun-src-1:1.6.0.85-1jpp.2.el7
  • java-1.6.0-sun-src-1:1.6.0.85-1jpp.3.el5_11
  • java-1.7.0-ibm-1:1.7.0.8.0-1jpp.1.el5
  • java-1.7.0-ibm-demo-1:1.7.0.8.0-1jpp.1.el5
  • java-1.7.0-ibm-devel-1:1.7.0.8.0-1jpp.1.el5
  • java-1.7.0-ibm-jdbc-1:1.7.0.8.0-1jpp.1.el5
  • java-1.7.0-ibm-plugin-1:1.7.0.8.0-1jpp.1.el5
  • java-1.7.0-ibm-src-1:1.7.0.8.0-1jpp.1.el5
  • java-1.6.0-ibm-1:1.6.0.16.2-1jpp.1.el5
  • java-1.6.0-ibm-1:1.6.0.16.2-1jpp.1.el6_6
  • java-1.6.0-ibm-accessibility-1:1.6.0.16.2-1jpp.1.el5
  • java-1.6.0-ibm-demo-1:1.6.0.16.2-1jpp.1.el5
  • java-1.6.0-ibm-demo-1:1.6.0.16.2-1jpp.1.el6_6
  • java-1.6.0-ibm-devel-1:1.6.0.16.2-1jpp.1.el5
  • java-1.6.0-ibm-devel-1:1.6.0.16.2-1jpp.1.el6_6
  • java-1.6.0-ibm-javacomm-1:1.6.0.16.2-1jpp.1.el5
  • java-1.6.0-ibm-javacomm-1:1.6.0.16.2-1jpp.1.el6_6
  • java-1.6.0-ibm-jdbc-1:1.6.0.16.2-1jpp.1.el5
  • java-1.6.0-ibm-jdbc-1:1.6.0.16.2-1jpp.1.el6_6
  • java-1.6.0-ibm-plugin-1:1.6.0.16.2-1jpp.1.el5
  • java-1.6.0-ibm-plugin-1:1.6.0.16.2-1jpp.1.el6_6
  • java-1.6.0-ibm-src-1:1.6.0.16.2-1jpp.1.el5
  • java-1.6.0-ibm-src-1:1.6.0.16.2-1jpp.1.el6_6
  • java-1.7.1-ibm-1:1.7.1.2.0-1jpp.3.el6_6
  • java-1.7.1-ibm-1:1.7.1.2.0-1jpp.3.el7_0
  • java-1.7.1-ibm-demo-1:1.7.1.2.0-1jpp.3.el6_6
  • java-1.7.1-ibm-demo-1:1.7.1.2.0-1jpp.3.el7_0
  • java-1.7.1-ibm-devel-1:1.7.1.2.0-1jpp.3.el6_6
  • java-1.7.1-ibm-devel-1:1.7.1.2.0-1jpp.3.el7_0
  • java-1.7.1-ibm-jdbc-1:1.7.1.2.0-1jpp.3.el6_6
  • java-1.7.1-ibm-jdbc-1:1.7.1.2.0-1jpp.3.el7_0
  • java-1.7.1-ibm-plugin-1:1.7.1.2.0-1jpp.3.el6_6
  • java-1.7.1-ibm-plugin-1:1.7.1.2.0-1jpp.3.el7_0
  • java-1.7.1-ibm-src-1:1.7.1.2.0-1jpp.3.el6_6
  • java-1.7.1-ibm-src-1:1.7.1.2.0-1jpp.3.el7_0
  • java-1.5.0-ibm-1:1.5.0.16.8-1jpp.1.el5
  • java-1.5.0-ibm-1:1.5.0.16.8-1jpp.1.el6_6
  • java-1.5.0-ibm-accessibility-1:1.5.0.16.8-1jpp.1.el5
  • java-1.5.0-ibm-demo-1:1.5.0.16.8-1jpp.1.el5
  • java-1.5.0-ibm-demo-1:1.5.0.16.8-1jpp.1.el6_6
  • java-1.5.0-ibm-devel-1:1.5.0.16.8-1jpp.1.el5
  • java-1.5.0-ibm-devel-1:1.5.0.16.8-1jpp.1.el6_6
  • java-1.5.0-ibm-javacomm-1:1.5.0.16.8-1jpp.1.el5
  • java-1.5.0-ibm-javacomm-1:1.5.0.16.8-1jpp.1.el6_6
  • java-1.5.0-ibm-jdbc-1:1.5.0.16.8-1jpp.1.el5
  • java-1.5.0-ibm-jdbc-1:1.5.0.16.8-1jpp.1.el6_6
  • java-1.5.0-ibm-plugin-1:1.5.0.16.8-1jpp.1.el5
  • java-1.5.0-ibm-plugin-1:1.5.0.16.8-1jpp.1.el6_6
  • java-1.5.0-ibm-src-1:1.5.0.16.8-1jpp.1.el5
  • java-1.5.0-ibm-src-1:1.5.0.16.8-1jpp.1.el6_6
  • java-1.7.0-ibm-1:1.7.0.8.0-1jpp.1.el6_6
  • java-1.7.0-ibm-demo-1:1.7.0.8.0-1jpp.1.el6_6
  • java-1.7.0-ibm-devel-1:1.7.0.8.0-1jpp.1.el6_6
  • java-1.7.0-ibm-jdbc-1:1.7.0.8.0-1jpp.1.el6_6
  • java-1.7.0-ibm-plugin-1:1.7.0.8.0-1jpp.1.el6_6
  • java-1.7.0-ibm-src-1:1.7.0.8.0-1jpp.1.el6_6
  • java-1.6.0-ibm-1:1.6.0.16.3-1jpp.1.el5
  • java-1.6.0-ibm-1:1.6.0.16.3-1jpp.1.el6
  • java-1.6.0-ibm-devel-1:1.6.0.16.3-1jpp.1.el5
  • java-1.6.0-ibm-devel-1:1.6.0.16.3-1jpp.1.el6
refmap via4
bid 70544
confirm
debian
  • DSA-3077
  • DSA-3080
gentoo GLSA-201502-12
hp
  • HPSBUX03218
  • SSRT101770
secunia
  • 60414
  • 60416
  • 60417
  • 61018
  • 61020
  • 61143
  • 61163
  • 61164
  • 61346
  • 61609
  • 61629
  • 61631
  • 61928
suse
  • SUSE-SU-2014:1422
  • SUSE-SU-2014:1526
  • SUSE-SU-2014:1549
  • SUSE-SU-2015:0344
  • SUSE-SU-2015:0345
  • SUSE-SU-2015:0376
  • SUSE-SU-2015:0392
ubuntu
  • USN-2386-1
  • USN-2388-1
  • USN-2388-2
Last major update 13-05-2022 - 14:57
Published 15-10-2014 - 22:55
Last modified 13-05-2022 - 14:57
Back to Top